DOD Insider Threat Management and Analysis Center (DITMAC)

Our Mission   

Provide the DOD enterprise a capability to identify, assess, and mitigate risk from insiders, to oversee and manage unauthorized disclosures, and to integrate, manage, mature, and professionalize insider threat (InT) capabilities. 


DoD Insider Threat (InT) Components report cases to the DITMAC if an individual's behavior meets the criteria under one or more of DITMAC's reporting thresholds. DITMAC's case management system enables information sharing across the InT enterprise. DITMAC analyzes the reported incident and provides recommendations for mitigation. Then, InT Component hubs implement mitigation recommendations and DITMAC oversees to resolution. 

Key Programs 

Analysis and Mitigation (A&M) - Provides the capability to consolidate and share information necessary to identify potential insider threats, develop a holistic picture of risk posed by insiders, and coordinate actions to mitigate risk across the Department.  

Behavioral Threat Analysis Center (BTAC) - Provides tailored insider threat (InT) case-specific recommendations in behavioral science, threat management, cyber, counterintelligence, law enforcement, and human resources.  

Prevention, Assistance, Response (PAR) - Insider threat (InT) support and coordination at the installation level primarily focused on preventing acts of workplace violence.  

Mission Integration Office (MIO) – Supports enterprise User Activity Monitoring (UAM) efforts and integrates Publicly Available Information (PAI) into InT analytic products to contextualize risk. 

What is an Insider Threat? 

Anyone with authorized access who poses a risk to U.S. Government installations, facilities, personnel, missions, and/or resources. 

Insider Threat Training and Tools


Introducing the BTAC
BTAC Special Topic Extremism
BTAC Bulletin November 2023 - Disgruntlement