Data Protection From Insider Threats

Data Protection From Insider Threats Book in PDF, ePub and Kindle version is available to download in english. Read online anytime anywhere directly from your device. Click on the download button below to get a free pdf file of Data Protection From Insider Threats book. This book definitely worth reading, it is an incredibly well-written.

Data Protection from Insider Threats

Elisa Bertino
Data Protection from Insider Threats Book PDF

Author : Elisa Bertino
Publisher : Morgan & Claypool Publishers
Page : 93 pages
File Size : 42,7 Mb
Release : 2012-06-01
Category : Computers
ISBN : 9781608457694

Get Book

Data Protection from Insider Threats by Elisa Bertino Pdf

As data represent a key asset for today's organizations, the problem of how to protect this data from theft and misuse is at the forefront of these organizations' minds. Even though today several data security techniques are available to protect data and computing infrastructures, many such techniques -- such as firewalls and network security tools -- are unable to protect data from attacks posed by those working on an organization's "inside." These "insiders" usually have authorized access to relevant information systems, making it extremely challenging to block the misuse of information while still allowing them to do their jobs. This book discusses several techniques that can provide effective protection against attacks posed by people working on the inside of an organization. Chapter One introduces the notion of insider threat and reports some data about data breaches due to insider threats. Chapter Two covers authentication and access control techniques, and Chapter Three shows how these general security techniques can be extended and used in the context of protection from insider threats. Chapter Four addresses anomaly detection techniques that are used to determine anomalies in data accesses by insiders. These anomalies are often indicative of potential insider data attacks and therefore play an important role in protection from these attacks. Security information and event management (SIEM) tools and fine-grained auditing are discussed in Chapter Five. These tools aim at collecting, analyzing, and correlating -- in real-time -- any information and event that may be relevant for the security of an organization. As such, they can be a key element in finding a solution to such undesirable insider threats. Chapter Six goes on to provide a survey of techniques for separation-of-duty (SoD). SoD is an important principle that, when implemented in systems and tools, can strengthen data protection from malicious insiders. However, to date, very few approaches have been proposed for implementing SoD in systems. In Chapter Seven, a short survey of a commercial product is presented, which provides different techniques for protection from malicious users with system privileges -- such as a DBA in database management systems. Finally, in Chapter Eight, the book concludes with a few remarks and additional research directions. Table of Contents: Introduction / Authentication / Access Control / Anomaly Detection / Security Information and Event Management and Auditing / Separation of Duty / Case Study: Oracle Database Vault / Conclusion

Insider Threats in Cyber Security

Christian W. Probst,Jeffrey Hunker,Matt Bishop,Dieter Gollmann
Insider Threats in Cyber Security Book PDF

Author : Christian W. Probst,Jeffrey Hunker,Matt Bishop,Dieter Gollmann
Publisher : Springer Science & Business Media
Page : 244 pages
File Size : 45,6 Mb
Release : 2010-07-28
Category : Computers
ISBN : 9781441971333

Get Book

Insider Threats in Cyber Security by Christian W. Probst,Jeffrey Hunker,Matt Bishop,Dieter Gollmann Pdf

Insider Threats in Cyber Security is a cutting edge text presenting IT and non-IT facets of insider threats together. This volume brings together a critical mass of well-established worldwide researchers, and provides a unique multidisciplinary overview. Monica van Huystee, Senior Policy Advisor at MCI, Ontario, Canada comments "The book will be a must read, so of course I’ll need a copy." Insider Threats in Cyber Security covers all aspects of insider threats, from motivation to mitigation. It includes how to monitor insider threats (and what to monitor for), how to mitigate insider threats, and related topics and case studies. Insider Threats in Cyber Security is intended for a professional audience composed of the military, government policy makers and banking; financing companies focusing on the Secure Cyberspace industry. This book is also suitable for advanced-level students and researchers in computer science as a secondary text or reference book.

Insider Threat

Michael G. Gelles
Insider Threat Book PDF

Author : Michael G. Gelles
Publisher : Butterworth-Heinemann
Page : 252 pages
File Size : 54,8 Mb
Release : 2016-05-28
Category : Business & Economics
ISBN : 9780128026229

Get Book

Insider Threat by Michael G. Gelles Pdf

Insider Threat: Detection, Mitigation, Deterrence and Prevention presents a set of solutions to address the increase in cases of insider threat. This includes espionage, embezzlement, sabotage, fraud, intellectual property theft, and research and development theft from current or former employees. This book outlines a step-by-step path for developing an insider threat program within any organization, focusing on management and employee engagement, as well as ethical, legal, and privacy concerns. In addition, it includes tactics on how to collect, correlate, and visualize potential risk indicators into a seamless system for protecting an organization’s critical assets from malicious, complacent, and ignorant insiders. Insider Threat presents robust mitigation strategies that will interrupt the forward motion of a potential insider who intends to do harm to a company or its employees, as well as an understanding of supply chain risk and cyber security, as they relate to insider threat. Offers an ideal resource for executives and managers who want the latest information available on protecting their organization’s assets from this growing threat Shows how departments across an entire organization can bring disparate, but related, information together to promote the early identification of insider threats Provides an in-depth explanation of mitigating supply chain risk Outlines progressive approaches to cyber security

The CERT Guide to Insider Threats

Dawn M. Cappelli,Andrew P. Moore,Randall F. Trzeciak
The CERT Guide to Insider Threats Book PDF

Author : Dawn M. Cappelli,Andrew P. Moore,Randall F. Trzeciak
Publisher : Addison-Wesley
Page : 431 pages
File Size : 48,7 Mb
Release : 2012-01-20
Category : Computers
ISBN : 9780132906043

Get Book

The CERT Guide to Insider Threats by Dawn M. Cappelli,Andrew P. Moore,Randall F. Trzeciak Pdf

Since 2001, the CERT® Insider Threat Center at Carnegie Mellon University’s Software Engineering Institute (SEI) has collected and analyzed information about more than seven hundred insider cyber crimes, ranging from national security espionage to theft of trade secrets. The CERT® Guide to Insider Threats describes CERT’s findings in practical terms, offering specific guidance and countermeasures that can be immediately applied by executives, managers, security officers, and operational staff within any private, government, or military organization. The authors systematically address attacks by all types of malicious insiders, including current and former employees, contractors, business partners, outsourcers, and even cloud-computing vendors. They cover all major types of insider cyber crime: IT sabotage, intellectual property theft, and fraud. For each, they present a crime profile describing how the crime tends to evolve over time, as well as motivations, attack methods, organizational issues, and precursor warnings that could have helped the organization prevent the incident or detect it earlier. Beyond identifying crucial patterns of suspicious behavior, the authors present concrete defensive measures for protecting both systems and data. This book also conveys the big picture of the insider threat problem over time: the complex interactions and unintended consequences of existing policies, practices, technology, insider mindsets, and organizational culture. Most important, it offers actionable recommendations for the entire organization, from executive management and board members to IT, data owners, HR, and legal departments. With this book, you will find out how to Identify hidden signs of insider IT sabotage, theft of sensitive information, and fraud Recognize insider threats throughout the software development life cycle Use advanced threat controls to resist attacks by both technical and nontechnical insiders Increase the effectiveness of existing technical security tools by enhancing rules, configurations, and associated business processes Prepare for unusual insider attacks, including attacks linked to organized crime or the Internet underground By implementing this book’s security practices, you will be incorporating protection mechanisms designed to resist the vast majority of malicious insider attacks.

Insider Attack and Cyber Security

Salvatore J. Stolfo,Steven M. Bellovin,Shlomo Hershkop,Angelos D. Keromytis,Sara Sinclair,Sean W. Smith
Insider Attack and Cyber Security Book PDF

Author : Salvatore J. Stolfo,Steven M. Bellovin,Shlomo Hershkop,Angelos D. Keromytis,Sara Sinclair,Sean W. Smith
Publisher : Springer Science & Business Media
Page : 223 pages
File Size : 48,5 Mb
Release : 2008-08-29
Category : Computers
ISBN : 9780387773223

Get Book

Insider Attack and Cyber Security by Salvatore J. Stolfo,Steven M. Bellovin,Shlomo Hershkop,Angelos D. Keromytis,Sara Sinclair,Sean W. Smith Pdf

This book defines the nature and scope of insider problems as viewed by the financial industry. This edited volume is based on the first workshop on Insider Attack and Cyber Security, IACS 2007. The workshop was a joint effort from the Information Security Departments of Columbia University and Dartmouth College. The book sets an agenda for an ongoing research initiative to solve one of the most vexing problems encountered in security, and a range of topics from critical IT infrastructure to insider threats. In some ways, the insider problem is the ultimate security problem.

Insider Threat

Julie Mehan
Insider Threat Book PDF

Author : Julie Mehan
Publisher : IT Governance Ltd
Page : 301 pages
File Size : 50,8 Mb
Release : 2016-09-20
Category : Internal security
ISBN : 9781849288408

Get Book

Insider Threat by Julie Mehan Pdf

Every type of organization is vulnerable to insider abuse, errors, and malicious attacks: Grant anyone access to a system and you automatically introduce a vulnerability. Insiders can be current or former employees, contractors, or other business partners who have been granted authorized access to networks, systems, or data, and all of them can bypass security measures through legitimate means. Insider Threat – A Guide to Understanding, Detecting, and Defending Against the Enemy from Within shows how a security culture based on international best practice can help mitigate the insider threat, providing short-term quick fixes and long-term solutions that can be applied as part of an effective insider threat program. Read this book to learn the seven organizational characteristics common to insider threat victims; the ten stages of a malicious attack; the ten steps of a successful insider threat program; and the construction of a three-tier security culture, encompassing artefacts, values, and shared assumptions. Perhaps most importantly, it also sets out what not to do, listing a set of worst practices that should be avoided. About the author Dr Julie Mehan is the founder and president of JEMStone Strategies and a principal in a strategic consulting firm in Virginia. She has delivered cybersecurity and related privacy services to senior commercial, Department of Defense, and federal government clients. Dr Mehan is also an associate professor at the University of Maryland University College, specializing in courses in cybersecurity, cyberterror, IT in organizations, and ethics in an Internet society

Data Protection from Insider Threats

Elisa Bertino
Data Protection from Insider Threats Book PDF

Author : Elisa Bertino
Publisher : Springer Nature
Page : 77 pages
File Size : 45,9 Mb
Release : 2022-05-31
Category : Computers
ISBN : 9783031018909

Get Book

Data Protection from Insider Threats by Elisa Bertino Pdf

As data represent a key asset for today's organizations, the problem of how to protect this data from theft and misuse is at the forefront of these organizations' minds. Even though today several data security techniques are available to protect data and computing infrastructures, many such techniques -- such as firewalls and network security tools -- are unable to protect data from attacks posed by those working on an organization's "inside." These "insiders" usually have authorized access to relevant information systems, making it extremely challenging to block the misuse of information while still allowing them to do their jobs. This book discusses several techniques that can provide effective protection against attacks posed by people working on the inside of an organization. Chapter One introduces the notion of insider threat and reports some data about data breaches due to insider threats. Chapter Two covers authentication and access control techniques, and Chapter Three shows how these general security techniques can be extended and used in the context of protection from insider threats. Chapter Four addresses anomaly detection techniques that are used to determine anomalies in data accesses by insiders. These anomalies are often indicative of potential insider data attacks and therefore play an important role in protection from these attacks. Security information and event management (SIEM) tools and fine-grained auditing are discussed in Chapter Five. These tools aim at collecting, analyzing, and correlating -- in real-time -- any information and event that may be relevant for the security of an organization. As such, they can be a key element in finding a solution to such undesirable insider threats. Chapter Six goes on to provide a survey of techniques for separation-of-duty (SoD). SoD is an important principle that, when implemented in systems and tools, can strengthen data protection from malicious insiders. However, to date, very few approaches have been proposed for implementing SoD in systems. In Chapter Seven, a short survey of a commercial product is presented, which provides different techniques for protection from malicious users with system privileges -- such as a DBA in database management systems. Finally, in Chapter Eight, the book concludes with a few remarks and additional research directions. Table of Contents: Introduction / Authentication / Access Control / Anomaly Detection / Security Information and Event Management and Auditing / Separation of Duty / Case Study: Oracle Database Vault / Conclusion

Insider Threat: Protecting the Enterprise from Sabotage, Spying, and Theft

Eric Cole,Sandra Ring
Insider Threat Protecting the Enterprise from Sabotage Spying and Theft Book PDF

Author : Eric Cole,Sandra Ring
Publisher : Elsevier
Page : 350 pages
File Size : 52,9 Mb
Release : 2005-12-15
Category : Computers
ISBN : 0080489052

Get Book

Insider Threat: Protecting the Enterprise from Sabotage, Spying, and Theft by Eric Cole,Sandra Ring Pdf

The Secret Service, FBI, NSA, CERT (Computer Emergency Response Team) and George Washington University have all identified “Insider Threats as one of the most significant challenges facing IT, security, law enforcement, and intelligence professionals today. This book will teach IT professional and law enforcement officials about the dangers posed by insiders to their IT infrastructure and how to mitigate these risks by designing and implementing secure IT systems as well as security and human resource policies. The book will begin by identifying the types of insiders who are most likely to pose a threat. Next, the reader will learn about the variety of tools and attacks used by insiders to commit their crimes including: encryption, steganography, and social engineering. The book will then specifically address the dangers faced by corporations and government agencies. Finally, the reader will learn how to design effective security systems to prevent insider attacks and how to investigate insider security breeches that do occur. Throughout the book, the authors will use their backgrounds in the CIA to analyze several, high-profile cases involving insider threats. * Tackles one of the most significant challenges facing IT, security, law enforcement, and intelligence professionals today * Both co-authors worked for several years at the CIA, and they use this experience to analyze several high-profile cases involving insider threat attacks * Despite the frequency and harm caused by insider attacks, there are no competing books on this topic.books on this topic

Human Aspects of Information Security, Privacy, and Trust

Theo Tryfonas,Ioannis Askoxylakis
Human Aspects of Information Security Privacy and Trust Book PDF

Author : Theo Tryfonas,Ioannis Askoxylakis
Publisher : Springer
Page : 448 pages
File Size : 49,9 Mb
Release : 2014-06-07
Category : Computers
ISBN : 9783319076201

Get Book

Human Aspects of Information Security, Privacy, and Trust by Theo Tryfonas,Ioannis Askoxylakis Pdf

This book constitutes the proceedings of the Second International Conference on Human Aspects of Information Security, Privacy, and Trust, HAS 2014, held as part of HCI International 2014 which took place in Heraklion, Crete, Greece, in June 2014 and incorporated 14 conferences which similar thematic areas. HCII 2014 received a total of 4766 submissions, of which 1476 papers and 220 posters were accepted for publication after a careful reviewing process. These papers address the latest research and development efforts and highlight the human aspects of design and use of computing systems. The papers thoroughly cover the entire field of Human-Computer Interaction, addressing major advances in knowledge and effective use of computers in a variety of application areas. The 38 papers presented in the HAS 2014 proceedings are organized in topical sections named: usable security; authentication and passwords; security policy and awareness; human behaviour in cyber security and privacy issues.

Inside Jobs

Joe Payne,Jadee Hanson,Mark Wojtasiak
Inside Jobs Book PDF

Author : Joe Payne,Jadee Hanson,Mark Wojtasiak
Publisher : Simon and Schuster
Page : 191 pages
File Size : 54,6 Mb
Release : 2020-09-29
Category : Business & Economics
ISBN : 9781510764491

Get Book

Inside Jobs by Joe Payne,Jadee Hanson,Mark Wojtasiak Pdf

From data security company Code42, Inside Jobs offers companies of all sizes a new way to secure today’s collaborative cultures—one that works without compromising sensitive company data or slowing business down. Authors Joe Payne, Jadee Hanson, and Mark Wojtasiak, seasoned veterans in the cybersecurity space, provide a top-down and bottom-up picture of the rewards and perils involved in running and securing organizations focused on rapid, iterative, and collaborative innovation. Modern day data security can no longer be accomplished by “Big Brother” forms of monitoring or traditional prevention solutions that rely solely on classification and blocking systems. These technologies frustrate employees, impede collaboration, and force productivity work-arounds that risk the very data you need to secure. They provide the illusion that your trade secrets, customer lists, patents, and other intellectual property are protected. That couldn’t be farther from the truth, as insider threats continue to grow. These include: Well-intentioned employees inadvertently sharing proprietary data Departing employees taking your trade secrets with them to the competition A high-risk employee moving source code to an unsanctioned cloud service What’s the solution? It’s not the hunt for hooded, malicious wrongdoers that you might expect. The new world of data security is built on security acting as an ally versus an adversary. It assumes positive intent, creates organizational transparency, establishes acceptable data use policies, increases security awareness, and provides ongoing training. Whether you are a CEO, CIO, CISO, CHRO, general counsel, or business leader, this book will help you understand the important role you have to play in securing the collaborative cultures of the future.

Insider Threats

Matthew Bunn,Scott D. Sagan
Insider Threats Book PDF

Author : Matthew Bunn,Scott D. Sagan
Publisher : Cornell University Press
Page : 192 pages
File Size : 43,8 Mb
Release : 2017-01-24
Category : Political Science
ISBN : 9781501706493

Get Book

Insider Threats by Matthew Bunn,Scott D. Sagan Pdf

"This compendium of research on insider threats is essential reading for all personnel with accountabilities for security; it shows graphically the extent and persistence of the threat that all organizations face and against which they must take preventive measures." — Roger Howsley, Executive Director, World Institute for Nuclear Security High-security organizations around the world face devastating threats from insiders—trusted employees with access to sensitive information, facilities, and materials. From Edward Snowden to the Fort Hood shooter to the theft of nuclear materials, the threat from insiders is on the front page and at the top of the policy agenda. Insider Threats offers detailed case studies of insider disasters across a range of different types of institutions, from biological research laboratories, to nuclear power plants, to the U.S. Army. Matthew Bunn and Scott D. Sagan outline cognitive and organizational biases that lead organizations to downplay the insider threat, and they synthesize "worst practices" from these past mistakes, offering lessons that will be valuable for any organization with high security and a lot to lose. Insider threats pose dangers to anyone who handles information that is secret or proprietary, material that is highly valuable or hazardous, people who must be protected, or facilities that might be sabotaged. This is the first book to offer in-depth case studies across a range of industries and contexts, allowing entities such as nuclear facilities and casinos to learn from each other. It also offers an unprecedented analysis of terrorist thinking about using insiders to get fissile material or sabotage nuclear facilities. Contributors: Matthew Bunn, Harvard University; Andreas Hoelstad Dæhli, Oslo; Kathryn M. Glynn, IBM Global Business Services; Thomas Hegghammer, Norwegian Defence Research Establishment, Oslo; Austin Long, Columbia University; Scott D. Sagan, Stanford University; Ronald Schouten, Massachusetts General Hospital and Harvard Medical School; Jessica Stern, Harvard University; Amy B. Zegart, Stanford University

Big Data Analytics with Applications in Insider Threat Detection

Bhavani Thuraisingham,Pallabi Parveen,Mohammad Mehedy Masud,Latifur Khan
Big Data Analytics with Applications in Insider Threat Detection Book PDF

Author : Bhavani Thuraisingham,Pallabi Parveen,Mohammad Mehedy Masud,Latifur Khan
Publisher : CRC Press
Page : 544 pages
File Size : 45,5 Mb
Release : 2017-11-22
Category : Computers
ISBN : 9781498705486

Get Book

Big Data Analytics with Applications in Insider Threat Detection by Bhavani Thuraisingham,Pallabi Parveen,Mohammad Mehedy Masud,Latifur Khan Pdf

Today's malware mutates randomly to avoid detection, but reactively adaptive malware is more intelligent, learning and adapting to new computer defenses on the fly. Using the same algorithms that antivirus software uses to detect viruses, reactively adaptive malware deploys those algorithms to outwit antivirus defenses and to go undetected. This book provides details of the tools, the types of malware the tools will detect, implementation of the tools in a cloud computing framework and the applications for insider threat detection.

Online Banking Security Measures and Data Protection

Aljawarneh, Shadi A.
Online Banking Security Measures and Data Protection Book PDF

Author : Aljawarneh, Shadi A.
Publisher : IGI Global
Page : 312 pages
File Size : 44,9 Mb
Release : 2016-09-23
Category : Business & Economics
ISBN : 9781522508656

Get Book

Online Banking Security Measures and Data Protection by Aljawarneh, Shadi A. Pdf

Technological innovations in the banking sector have provided numerous benefits to customers and banks alike; however, the use of e-banking increases vulnerability to system attacks and threats, making effective security measures more vital than ever. Online Banking Security Measures and Data Protection is an authoritative reference source for the latest scholarly material on the challenges presented by the implementation of e-banking in contemporary financial systems. Presenting emerging techniques to secure these systems against potential threats and highlighting theoretical foundations and real-world case studies, this book is ideally designed for professionals, practitioners, upper-level students, and technology developers interested in the latest developments in e-banking security.

Insider Computer Fraud

Kenneth Brancik
Insider Computer Fraud Book PDF

Author : Kenneth Brancik
Publisher : CRC Press
Page : 504 pages
File Size : 55,6 Mb
Release : 2007-12-06
Category : Computers
ISBN : 1420046608

Get Book

Insider Computer Fraud by Kenneth Brancik Pdf

An organization’s employees are often more intimate with its computer system than anyone else. Many also have access to sensitive information regarding the company and its customers. This makes employees prime candidates for sabotaging a system if they become disgruntled or for selling privileged information if they become greedy. Insider Computer Fraud: An In-depth Framework for Detecting and Defending against Insider IT Attacks presents the methods, safeguards, and techniques that help protect an organization from insider computer fraud. Drawing from the author’s vast experience assessing the adequacy of IT security for the banking and securities industries, the book presents a practical framework for identifying, measuring, monitoring, and controlling the risks associated with insider threats. It not only provides an analysis of application or system-related risks, it demonstrates the interrelationships that exist between an application and the IT infrastructure components it uses to transmit, process, and store sensitive data. The author also examines the symbiotic relationship between the risks, controls, threats, and action plans that should be deployed to enhance the overall information security governance processes. Increasing the awareness and understanding necessary to effectively manage the risks and controls associated with an insider threat, this book is an invaluable resource for those interested in attaining sound and best practices over the risk management process.

Do Innovative Thinkers Pose an Increased Insider Threat?

U. S. Military,Department of Defense (Dod),Adam Humphrey
Do Innovative Thinkers Pose an Increased Insider Threat Book PDF

Author : U. S. Military,Department of Defense (Dod),Adam Humphrey
Publisher : Unknown
Page : 76 pages
File Size : 45,8 Mb
Release : 2019-08-25
Category : Electronic
ISBN : 1688616918

Get Book

Do Innovative Thinkers Pose an Increased Insider Threat? by U. S. Military,Department of Defense (Dod),Adam Humphrey Pdf

The malicious insider threat is one of the most nefarious of potential cyber security breaches. There have been egregious insider data thefts in the last 10 years within the government. The Unintentional Insider Threat (UIT)-the individual who is incompetent or careless and accidentally divulges sensitive information-is also a major concern. Today, the Department of Defense (DoD) expends considerable effort to identify both forms of insider threats. Meanwhile, the DoD hopes to recruit innovative information technology personnel to better meet current and emerging cyber threats to national security. Although in its infancy, organizations like the Defense Innovation Unit represent this focused effort. This thesis investigates whether innovative personnel will pose increased insider threat potential. Our preliminary conclusion is that innovative people would not pose more of a malicious insider threat, but the UIT and innovator share one trait together: risk taking. Furthermore, mental health issues and disgruntlement are two traits shared by UIT and malicious insiders. The DoD should explore screening personnel for risk-taking traits, for example with the Balloon Analogue Risk Task (BART). Finally, the DoD should continue to be alert to mental health issues, and first line supervisors should intervene quickly to help disgruntled employees.This compilation includes a reproduction of the 2019 Worldwide Threat Assessment of the U.S. Intelligence Community.Personnel with authorized access are potentially the biggest threat to the Department of Defense (DoD). The cyber actor operating from outside the DoDIN is not as dangerous. The attacker without insider access has to circumvent world-class technology, firewalls, access control lists, intrusion detection systems, and encryption just to potentially access sensitive data. In fact, in 2018, insider threats accounted for 28% of all cyber-attacks. Trusted personnel already have the access; they have permission to be "inside the wire." The trusted insider is where the most dangerous threat lies. Meanwhile, the rapid pace of cyber innovation within the DoD is necessitating recruitment of a new type of personnel. As cyber technology continues to evolve, the cyber workforce will need to evolve with it; the DoD will need innovative people to work in it and lead it. The commonplace association of innovative high tech workers with quirky personality types naturally raises the question of whether hiring an innovative workforce will foster more insider threats. The research question this thesis examines in depth is: Do innovative thinkers pose an increased insider threat? A rigorous assessment of this question, going beyond superficial impressions and stereotypes, is necessary to guide DoD policy as it builds a personnel base to meet future information security challenges.