The CERT® Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud)

Index

A

Acceptable use policies for sabotage, 42, 48

Acceptable workplace behavior, 168

Access and access controls

Ambitious Leader model, 80–81

description, 179

erosion of, 71, 189

fraud, 125

Internet underground, 291–292

logs, 172–173

remote, 90–92, 200–201

SDLC, 132–133

separation of duties and least privilege, 178–181

source code, 131, 142

system change controls, 193

after termination, 203–206

Access paths

eliminating, 50–52

sabotage, 40–45

Access rights management, 284

Accomplices

fraud, 103, 121, 269

information collection on, 328

theft of IP, 86

Accountability of third-party vendors, 57

Accounts and account management

expiration dates, 234

organized crime, 118

policies and practices, 174–177

for sabotage, 45, 52

terminated employees, ...

Get The CERT® Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

The CERT® Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud) by Dawn M. Cappelli, Andrew P. Moore, Randall F. Trzeciak

Index

A

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly