July 15, 2014 at 6:30 PM
ISSA National Capital Chapter July meeting topic:
Terry Gudaitis, Ph.D.
Social Media and the Insider Threat
With the onslaught of new social media platforms and the handheld devices used by people to gain access to apps, the web, and social media, insider threat may need a new perspective. Whether the threat or compromise is malicious or accidental, insiders are no longer only restricted to the computers, networks and devices provided by their organizations. Between BYOD, remote work arrangements and the new generation of users entering the workforce, people are using, sharing and accessing more information than ever. Thus, the risk vectors are increasing and this poses a different type of challenge for security professionals. Some of the topics covered will include:
- Apps and data mining – what is actually being collected about you, your activities and how you use your devices. Some studies are actually indicating that data mining by apps is more of a threat than malware.
- Social media disclosure and sharing – what the “typical” employee shares on social media and how that can leave a door open to your organization
- Integration of home/work use of computers, phones and tablets…even when BYOD is not part of the accepted policy
- The new workforce – how the new generation of employees generally views security, company loyalty, privacy, data sharing, and self-disclosure via social media
The presentation will conclude with some recommendations on how to better understand the contemporary insider threat and discuss technologies and solutions that can address the mitigation of risk.
About the Speaker
Terry is currently the owner of Mindstar Security & Profiling, LLC. Mindstar Security and Profiling specializes in custom/concierge security training, consulting, and imminent threat assessment for the commercial industry focusing on high profile and high net worth executives and families. Training and consultations include a unique perspective and blend of physical/cyber security, intelligence, and behavioral profiling. Terry provides psychological and behavioral profiling for investigations and offers profiling training in the classroom to security professionals.
Prior to forming her own firm in 2013, Terry was the Vice President and Cyber Intelligence Director at Cyveillance, responsible for operations and management of the security/intelligence delivery organization. Before joining Cyveillance, Terry also held senior positions at SAIC, Psynapse Technologies LLC and Global Integrity Corporation. Before focusing on the commercial sector, Terry was an operations officer and behavioral profiler at the Central Intelligence Agency (Counter Terrorist Center).
In addition to her corporate related work, Terry has served on the United States Secret Service Advisory Board for Insider Threat; trained investigators at the National Center for Missing and Exploited Children and regularly presents at national and international conferences. Her most current publications include a book on Social Engineering – Low Tech Hacking (2011) and, a book on profiling hackers entitled Malware Profiling (Oct. 2014 – to be released). Terry is also a frequent speaker at the International Spy Museum in Washington, DC.