The Defense Logistics Agency established a “fully operational” insider-threat program five months ahead of the Dec. 31 deadline for all Defense Department components to develop and implement measures against security threats posed by employees.
DLA said Friday it formed an insider threat working group that will meet quarterly to create policy and engage senior leaders as well as an incident response group that comprises record holders from each DLA subunit.
Jimmy Dyer, insider threat program manager of DLA’s intelligence unit, said a policy was signed in May 2015 to help identify individuals who could compromise the agency’s security through information systems or physical access.
“This policy and our program are geared toward those people who have inherent access to DLA, across the enterprise,” Dyer added.
Renee Roman, DLA chief of staff, formed a charter for an insider-threat working group in 2014 that established standard operating procedures on DLA’s coordinated response to potential risk indicators.
The agency identified 139 indicators such as history of crime or workplace violence, employee access to information system privileges and security clearances.
Dyer noted the initiative also seeks to protect employee privacy and civil liberties as well as promote transparency and trust throughout the organization.