Insider Threat

Insider threats can cause significant damage to our people and our national security. The U.S. Federal Government takes seriously the obligation to protect its people and assets whether the threats come from internal or external sources. Effective insider threat mitigation requires a coordinated and consolidated approach to security policies and reporting capabilities. The DoD Insider Threat Management and Analysis Center, or DITMAC, was created as a result of the tragic shootings at the Washington Navy Yard and Fort Hood. The mission of the DITMAC is to provide the DoD enterprise a capability to identify, assess and mitigate risk from insiders, to oversee and manage unauthorized disclosures, and to integrate, manage, mature and professionalize InT capabilities.

Are all insider threats malicious or intentional?

No. An insider threat may be “unwitting” if the insider is unaware that his or her actions or behaviors are exposing the United States to an elevated risk of harm or loss, perhaps through lack of training or negligence.

I don’t work with classified information. Is my office still vulnerable to insider threats?

Yes. There is no environment immune from the potential of insider threats. Insiders can threaten not only classified information but also sensitive information that can disrupt or harm individuals, U.S. resources, infrastructure or economy.

Are insiders as dangerous as external threats?

There should be no doubt that insiders present an equal threat to that posed by external actors. Their access and familiarity with the Government’s policies, security procedures, and technologies provide insiders opportunities to do great harm.

What should be reported as an Insider Threat?

For more information about what types of activities can be deemed an insider threat, please see our “Reporting an Insider Threat” brochure.

How do you report an Insider Threat?

See our “Reporting an Insider Threat” page.

Counterintelligence / Insider Threat Resources