The Cybersecurity and Infrastructure Security Agency has released new guidance aimed at helping critical infrastructure organizations and state, local, tribal and territorial governments address insider threats.
As CISA continues to publish guidance to help organizations strengthen their cybersecurity posture, collaboration between government and industry remains essential. The Potomac Officers Club’s 2026 Cyber Summit will bring together federal and industry leaders to discuss priorities shaping the cyber landscape. Book your spot at this May 21 event!
CISA said Wednesday the new resource, titled Assembling a Multi-Disciplinary Insider Threat Management Team, offers actionable strategies to help organizations prevent, detect and mitigate insider threats.
Table of Contents
What Does the CISA Insider Threat Infographic Say?
According to CISA, an insider threat management team plays a key role in managing an organization’s insider threat program, tracking potential threats and mitigating the consequences of an insider’s malicious actions.
The infographic outlines the Plan, Organize, Execute and Maintain, or POEM, framework. Under the POEM framework, an organization should plan how it will use a threat management team, organize the team in alignment with the organization’s requirements, implement insider threat mitigation efforts and maintain the team’s viability.
For the execution phase, the infographic recommends that organizations implement mandatory training; coordinate analysis and response measures through process integration; and establish a hub to gather, review and analyze elements to improve information management, among other best practices.
What Did CISA Officials Say About the Insider Threat Guidance?
Acting CISA Director Madhu Gottumukkala said CISA seeks to provide organizations with practical strategies and actionable resources to help leaders build multidisciplinary teams and protect systems relied upon by the public.
Steve Casapulla, executive assistant director for infrastructure security at CISA, noted that the infographic reflects input from industry and government partners and aims to provide actionable guidance for establishing insider threat management teams.
“We encourage leadership to draw expertise from across departments for a holistic defense, while fostering a culture of trust where employees feel empowered to report concerns and stop threats before they escalate,” Casapulla added.
What Is CISA?
CISA is an agency within the Department of Homeland Security that defends national, digital and physical infrastructure from cyberthreats.
The agency has led efforts to strengthen cybersecurity and critical infrastructure resilience through guidance and interagency collaboration. CISA worked with the FBI and other international partners to issue a joint guidance on secure connectivity principles for operational technology.
In December, CISA updated its Cross-Sector Cybersecurity Performance Goals to reflect evolving threats and integrate best practices across critical infrastructure sectors and launched a new platform to facilitate public-private collaboration in cybersecurity.
In addition, the agency recently released a new resource that identifies hardware and software categories that are expected to support post-quantum cryptography standards.
Related Articles
The Department of Veterans Affairs will invest $4.8 billion in efforts to modernize and repair healthcare facilities nationwide. As federal health agencies continue to manage large-scale investments and long-term modernization efforts, leaders across government and industry are watching how these initiatives unfold. The Potomac Officers Club will host the rescheduled 2025 Healthcare Summit on Feb. 12. Register now! VA said Wednesday the planned fiscal year 2026 spending marks the largest single-year investment under the Veterans Health Administration’s Non-Recurring Maintenance, or NRM, program. “Under President Trump, VA is putting Veterans first, and this historic investment underscores that fact,” said VA Secretary
The Army has selected Hanwha Defense USA for an enhanced use lease at Pine Bluff Arsenal in Arkansas as part of a broader effort to modernize the munitions supply chain and strengthen domestic production of critical energetics. Hanwha plans to invest about $1.3 billion in the project, which is expected to generate roughly 200 skilled jobs, the service said Wednesday. The lease would support the construction and operation of a new facility focused on producing key ingredients used in explosives and propellants, materials that underpin munitions such as 155mm artillery rounds. Final terms remain subject to lease negotiations. Brent Ingraham,
The U.S. Space Force deployed the Global Positioning System III Space Vehicle 09, or SV09, satellite into orbit on Jan. 27 aboard a SpaceX Falcon 9 rocket from Cape Canaveral Space Force Station in Florida. Lockheed Martin is a major sponsor of the Potomac Officers Club’s 2026 Air and Space Summit on July 30, where Air Force, Space Force and industry leaders will gather to address evolving challenges across the air and space domains. Get your tickets now. What Is the Purpose of the GPS III-9 Satellite? The Space Systems Command said Wednesday GPS III-9 will provide the GPS constellation with