New CISA Guidance Targets Insider Threat Risks

Staff Editor 2026-01-29
New CISA Guidance Targets Insider Threat Risks

New CISA Guidance Targets Insider Threat Risks

https://www.infosecurity-magazine.com/news/cisa-targets-insider-threat-risks/

Publish Date: 2026-01-29 11:00:00

Source Domain: www.infosecurity-magazine.com

The risk posed by insiders with authorized access to sensitive systems has prompted a renewed call to action from the US Cybersecurity and Infrastructure Security Agency (CISA).

The government entity has released a new infographic designed to help organizations prevent, detect and respond to insider threats that can disrupt operations and undermine trust.

The resource is aimed at critical infrastructure operators and state, local, tribal and territorial (SLTT) governments. It outlines practical steps for building teams that can manage insider risk in a structured and coordinated way, drawing on expertise across security, legal, human resources and operational functions.

Insider threats can emerge through deliberate acts or unintentional mistakes, CISA warned. Malicious insiders may abuse access for personal gain or retaliation, while negligent behavior and human error can create vulnerabilities that external adversaries exploit. In both cases, the impact can include data loss, reputational damage and harm to people or essential services.

“Insider threats remain one of the most serious challenges to organizational security because they can erode trust and disrupt critical operations,” said acting CISA director, Madhu Gottumukkala.

“CISA is committed to helping organizations confront this risk head-on by delivering practical strategies, expert guidance, and actionable resources that empower leaders to act decisively – building resilient, multi-disciplinary teams, fostering accountability and safeguarding the systems Americans rely on every day.”

A More Secure Framework

At the center of the infographic is a framework that treats insider threat management as an essential capability rather than an optional program. CISA emphasizes that teams should be scalable, trained and embedded within existing organizational structures to reflect risk tolerance and culture.

The key benefits highlighted include:

  • Broader visibility into risk factors…

Source

More Stories

Are connected electric vehicles safe? The top threats they face

Are connected electric vehicles safe? The top threats they face

Staff Editor 2026-06-06
Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Staff Editor 2026-06-06
Three highlights in latest DHS spending bill

Three highlights in latest DHS spending bill

Staff Editor 2026-06-05

Terms and Conditions - Privacy Policy