PBMares Accounting Blog

Insider Threat Program Implementation

Posted by Neena Shukla, CPA, CFE, CGMA, FCPA on Mar 27, 2017 4:34:04 PM

 

insider-threat.jpg

Contractors that have a facility clearance through the Department of Defense’s Defense Security Service (DSS) must have a written plan in place for the implementation of an insider threat program that is designed to detect, deter and mitigate insider threats.

The overall goal of the program is to gather, integrate and report relevant and available information about activities of individuals that indicate a potential or actual insider threat. Tailored to the size and complexity of the cleared contractor’s business must include:

  • Formal appointment of an insider threat program senior official.
  • A written plan defining insider threat information; procedures for accessing, sharing, compiling, identifying and reporting that information.
  • Written procedures for deterring and mitigating the risk and detecting insider threats.
  • Reporting “relevant and credible information”.
  • Training
  • Information security controls.

New Call-to-action

Cleared contractors are required to self-certify to the DSS that a written program is implemented and current.

For further information go to the BNA Federal Contracts Report, at: https://www.crowell.com/files/20161115-Cleared-Contractors-Under-the-Gun-as-Insider-Threat-Program-Deadline-Approaches.pdf, released by The Bureau of National Affairs November 15, 2016 and to the National Defense Industry Association National Defense Magazine November 2016 issue.

Topics: Government Contracts

Neena_Shukla.jpg

Neena Shukla, CPA, CFE, CGMA, FCPA

Neena is an assurance partner and government contracting niche leader at PBMares, LLP, in Fairfax. She is also the leader of the firm’s technical and emerging issues group.

For more information, please contact the author at nshukla@pbmares.com or visit: www.pbmares.com.

Subscribe to Email Updates