Goals and Objectives
Quote Box top
Shield Icon
Protect the homeland and US interests around the world
Integrate across agencies
Motivated and prepared workforce
Quote Box bottom
Leadership
"Fulfill our leadership role in the counterterrorism community"
1.1 Enhance strategic, tactical, and identities analysis using our access to foreign and domestic threat information and integrated data sets.
1.2 Strengthen the National Intelligence Manager— Counterterrorism role.
1.3 Advance government-wide counterterrorism planning, integration, coordination, and management.
Partnership
"Ensure our domestic and foreign partners have access to terrorism information and analysis when they need it."
2.1 Strengthen NCTC’s relationship with federal partners.
2.2 Enhance NCTC’s foreign government counterterrorism.
People
"Attract, develop, and reward a highly skilled workforce."
3.1 Attract a highly qualified, diverse workforce with an array of backgrounds, skills, and experiences, leveraging expertise from across the intelligence community and the US Government.
3.2 Increase training and professional development opportunities to expand and deepen the expertise of the NCTC workforce.
3.3 Ensure personnel are recognized, rewarded, and given access to the developmental resources they need to succeed.
Process
"Advance business practices to improve NCTC’s culture of collaboration, communication, and integrity."
4.1 Advance collaboration and integration across NCTC Directorates and Offices.
4.2 Improve processes to strengthen products and services to meet customer needs.
4.3 Enhance NCTC’s acquisition, sharing, and safeguarding of data in compliance with laws and policies designed to protect sensitive data.
4.4 Provide clear, consistent, and timely communications throughout NCTC.
Technology
"Enhance the use of information technology resources to strengthen NCTC’s core capabilities."
5.1 Deliver integrated information technology solutions that enable analytic production, seamless collaboration, and secure counterterrorism information sharing.
5.2 Implement and sustain a standards-based counterterrorism architecture and survivable infrastructure to drive efficiencies across the enterprise.
5.3 Define and implement transparent governance, acquisition management, and resource optimization processes to support evolving mission requirements.
NITTF Assessments
Executive Order (E.O.) 13587 and the National Insider Threat Policy directs the NITTF to conduct ‘’independent assessments of the adequacy of agency programs to implement established policies and minimum standards’’ and to report the results to the Steering Committee. It directs U.S. executive branch departments and agencies (D/As) to ‘‘provide information and access…to enable independent assessments.’’ The National Insider Threat Policy also requires the NITTF to conduct assessments to determine the level of organizational compliance with the Policy and Minimum Standards. All executive branch D/As that possess national security information or own or operate a classified network are subject to independent assessments.
An independent assessment is an integral part of the NITTF’s mission to assist D/As in establishing their insider threat programs. It provides a D/A with an outside view of its progress in implementing the Insider Threat Minimum Standards, identifies best practices the D/A has incorporated into its insider threat program, and makes recommendations in the areas where the NITTF assesses there is still work to be done to meet a Minimum Standard. These recommendations provide a guide for the D/A to focus its efforts towards reaching full operating capability—implementing all of the Minimum Standards. Recommendations in an independent assessment also provide a roadmap for the NITTF to provide tailored assistance to the D/A. Individual D/A independent assessment reports are shared only with D/A insider threat officials; for DoD components, the individual assessment reports are also shared with USD(I), as the Department’s Designated Senior Official.
If you are a Designated Senior Official or Program Manager for your Insider Threat Program, you may contact the NITTF to discuss scheduling an assessment.
Traits of a D/A that reaches FOC
Click here to view traits of a program that reaches Full Operating Capability (PDF)
Insider Threat Program Milestones
Insider Threat Minimum Standards by Category:
Enterprise Threat Mitigation News & Events
As a collaboration service to the Enterprise Threat Mitigation (ETM) Community, this section serves as a bulletin board for upcoming events of interest. Please check here periodically for newly posted information that may be of assistance. We’re also happy to post information about events of interest to the community that other agencies sponsor to ensure maximum visibility.
Upcoming Events:
17 Mar 2022 ETD Discussion – NCTC Information Sharing Initiative
10 – 11 am EST
Apr 2022 National Supply Chain Integrity Month All Month
Newsletter:
The ETM quarterly newsletter combines the NITTF News, the OPSEC and Federal Partners newsletters. Our goal is to bring you information that helps your organization coordinate defensive programs to counter adversaries blended offenses.
January Enterprise Threat Mitigation Newsletter 2023
October Enterprise Threat Mitigation Newsletter 2022
July Enterprise Threat Mitigation Newsletter 2022
April Enterprise Threat Mitigation Newsletter 2022
January Enterprise Threat Mitigation Newsletter 2022
October Enterprise Threat Mitigation Newsletter 2021
NITTF Outreach
Executive Order (E.O.) 13587 and the National Insider Threat Policy direct the NITTF to assist departments and agencies (D/A) in developing, implementing, and improving their Insider Threat Programs. The assistance effort is a collaborative process between the NITTF and the individual D/A. Through the assistance program, NITTF subject matter experts provide expertise, guidance, and advice on how best to achieve the Minimum Standards required for all insider threat programs. All components of the NITTF help facilitate the assistance mission in order to aid the executive branch D/As in meeting the requirements of E.O. 13587.
The NITTF Liaison Team is a critical part of the assistance program. Liaison Team members work directly with individual Federal Partners and select Department of Defense components. They provide direct assistance to insider threat program managers and personnel and help identify common solutions to common problems that are present across the enterprise. The Liaison Team also serves as an intermediary between D/As and the NITTF, helping identify task force resources, such as training or technical assistance, that may be beneficial to insider threat programs.
If you have any questions and/or insistence in establishing and insider threat office contact NITTF Assistance at This email address is being protected from spambots. You need JavaScript enabled to view it..
NITTF Resource Library
Welcome to the updated NITTF Resource Library. As part of its assistance mission, the NITTF works within the Insider Threat community to identify best practices, policy templates, and guidance to assist in the development of Insider Threat Programs and Insider Threat Training. Please check here periodically for newly posted information that may be of assistance.
The Resource Library is now divided into 4 sections to help visitors view the various information on Insider threat information:
| NITTF Produced Guides and Templates | NITTF Directives & Advisories |
| External Learning Modules | NEW: Additional Insider Threat Resources |
NITTF Produced Guides and Templates: This section of the NITTF Resource Library provides Insider threat information that was developed by NITTF. Included in this section are the 2017 Insider Threat Guide: A Compendium of best practices to accompany the National Insider Threat Minimum Standards (PDF) (and the errata) and the Any Given Day video.
NITTF Directives and Advisories: This section of the resource library provides the various advisories and directives. This section provides information to departments and agencies information on key Insider Threat topics such as User Activity Monitoring (UAM) and data mining.
External Learning Modules: This section of the resource library provides Insider Threat learning and information developed by our external partners. This section includes the recently uploaded Mental Wellness and Insider Threat modules develop by the IC-EEOD and members of the Intelligence Community respectively.
Additional Insider Threat Resources: This section provides additional resources that have been developed by our various partners that provide additional information and resources to the Insider Threat Community. Resources include external links, briefings, and documentation. NITTF would like to thank our partners who are willing to share their information to the Insider Threat Community.
NOTE: Materials in the NITTF Resource Library marked with asterisk (*) are For Official Use Only and has not been approved for public release. Please contact the This email address is being protected from spambots. You need JavaScript enabled to view it. if you have an official need for this item.
NITTF Collaboration Efforts
As part of the NITTF’s focus on assisting the executive branch with meeting the minimum standards, the NITTF has partnered with D/As to develop solutions to visualize complex data at no cost, provide a GOTS case management tool to D/As insider threat programs, and have assisted classified network providers with developing written data sharing agreements to meet minimum standard requirements.