National Counterintelligence and Security Center
CONTENT TO COME
NCSC is transforming its workforce and capabilities through strategic hiring and implementation of its professional development strategy. Through these efforts, NCSC will retain current talent and acquire new skills necessary to lead the nation's counterintelligence and security efforts to counter the foreign intelligence threat. NCSC has rotational opportunities for current federal civilian personnel that are interested in working in our dynamic and diverse organization.
NITTF Assessments
Executive Order (E.O.) 13587 and the National Insider Threat Policy directs the NITTF to conduct ‘’independent assessments of the adequacy of agency programs to implement established policies and minimum standards’’ and to report the results to the Steering Committee. It directs U.S. executive branch departments and agencies (D/As) to ‘‘provide information and access…to enable independent assessments.’’ The National Insider Threat Policy also requires the NITTF to conduct assessments to determine the level of organizational compliance with the Policy and Minimum Standards. All executive branch D/As that possess national security information or own or operate a classified network are subject to independent assessments.
An independent assessment is an integral part of the NITTF’s mission to assist D/As in establishing their insider threat programs. It provides a D/A with an outside view of its progress in implementing the Insider Threat Minimum Standards, identifies best practices the D/A has incorporated into its insider threat program, and makes recommendations in the areas where the NITTF assesses there is still work to be done to meet a Minimum Standard. These recommendations provide a guide for the D/A to focus its efforts towards reaching full operating capability—implementing all of the Minimum Standards. Recommendations in an independent assessment also provide a roadmap for the NITTF to provide tailored assistance to the D/A. Individual D/A independent assessment reports are shared only with D/A insider threat officials; for DoD components, the individual assessment reports are also shared with USD(I), as the Department’s Designated Senior Official.
If you are a Designated Senior Official or Program Manager for your Insider Threat Program, you may contact the NITTF to discuss scheduling an assessment.
Traits of a D/A that reaches FOC:
Click here to view traits of a program that reaches Full Operating Capability (PDF)
Insider Threat Program Milestones:
Insider Threat Minimum Standards by Category:
NITTF Outreach
Executive Order (E.O.) 13587 and the National Insider Threat Policy direct the NITTF to assist departments and agencies (D/A) in developing, implementing, and improving their Insider Threat Programs. The assistance effort is a collaborative process between the NITTF and the individual D/A. Through the assistance program, NITTF subject matter experts provide expertise, guidance, and advice on how best to achieve the Minimum Standards required for all insider threat programs. All components of the NITTF help facilitate the assistance mission in order to aid the executive branch D/As in meeting the requirements of E.O. 13587.
The NITTF Liaison Team is a critical part of the assistance program. Liaison Team members work directly with individual Federal Partners and select Department of Defense components. They provide direct assistance to insider threat program managers and personnel and help identify common solutions to common problems that are present across the enterprise. The Liaison Team also serves as an intermediary between D/As and the NITTF, helping identify task force resources, such as training or technical assistance, that may be beneficial to insider threat programs.
If you have any questions and/or insistence in establishing and insider threat office contact NITTF Assistance at This email address is being protected from spambots. You need JavaScript enabled to view it..
Enterprise Threat Mitigation News & Events
As a collaboration service to the Enterprise Threat Mitigation (ETM) Community, this section serves as a bulletin board for upcoming events of interest. Please check here periodically for newly posted information that may be of assistance. We’re also happy to post information about events of interest to the community that other agencies sponsor to ensure maximum visibility.
Upcoming Events:
17 Mar 2022 ETD Discussion – NCTC Information Sharing Initiative
10 – 11 am EST
Apr 2022 National Supply Chain Integrity Month All Month
Newsletter:
The ETM quarterly newsletter combines the NITTF News, the OPSEC and Federal Partners newsletters. Our goal is to bring you information that helps your organization coordinate defensive programs to counter adversaries blended offenses.
July Enterprise Threat Mitigation Newsletter 2022
April Enterprise Threat Mitigation Newsletter 2022
January Enterprise Threat Mitigation Newsletter 2022
October Enterprise Threat Mitigation Newsletter 2021
NITTF Resource Library
Welcome to the updated NITTF Resource Library. As part of its assistance mission, the NITTF works within the Insider Threat community to identify best practices, policy templates, and guidance to assist in the development of Insider Threat Programs and Insider Threat Training. Please check here periodically for newly posted information that may be of assistance.
The Resource Library is now divided into 4 sections to help visitors view the various information on Insider threat information:
| NITTF Produced Guides and Templates | NITTF Directives & Advisories |
| External Learning Modules | NEW: Additional Insider Threat Resources |
NITTF Produced Guides and Templates: This section of the NITTF Resource Library provides Insider threat information that was developed by NITTF. Included in this section are the 2017 Insider Threat Guide: A Compendium of best practices to accompany the National Insider Threat Minimum Standards (PDF) (and the errata) and the Any Given Day video.
NITTF Directives and Advisories: This section of the resource library provides the various advisories and directives. This section provides information to departments and agencies information on key Insider Threat topics such as User Activity Monitoring (UAM) and data mining.
External Learning Modules: This section of the resource library provides Insider Threat learning and information developed by our external partners. This section includes the recently uploaded Mental Wellness and Insider Threat modules develop by the IC-EEOD and members of the Intelligence Community respectively.
NEW: Additional Insider Threat Resources: This section provides additional resources that have been developed by our various partners that provide additional information and resources to the Insider Threat Community. Resources include external links, briefings, and documentation. NITTF would like to thank our partners who are willing to share their information to the Insider Threat Community.
New Information Available
NOTE: Materials in the NITTF Resource Library marked with asterisk (*) is For Official Use Only, and has not been approved for public release. Please contact the This email address is being protected from spambots. You need JavaScript enabled to view it. if you have an official need for this item.
NITTF Collaboration Efforts:
As part of the NITTF’s focus on assisting the executive branch with meeting the minimum standards, the NITTF has partnered with D/As to develop solutions to visualize complex data at no cost, provide a GOTS case management tool to D/As insider threat programs, and have assisted classified network providers with developing written data sharing agreements to meet minimum standard requirements.