Insider Threat Investigations & Analysis Training Course With Legal Guidance

This 2 day comprehensive training course will ensure that the Insider Threat Program Manager / Insider Risk Program Manager and Insider Threat Investigator / Analyst have the core, advanced knowledge, skills and resources for conducting Insider Threat Investigations, from a non-technical and technical perspective, using proven analytic principles and methodologies. Other individuals supporting the Insider Threat Program / Insider Risk Management Program (FSO, CSO, CISO, Human Resources, CIO – IT, Network Security, Counterintelligence Investigators, Mental Health / Behavioral Science Professionals, Legal Etc.) will greatly benefit from this training.
The co-instructor for this training is a recognized attorney with extensive experience in Employment Law, Insider Threats and Insider Threat Program’s. He will provide legal guidance on the collection, use and sharing of employee information, computer user activity monitoring and conducting investigations. This training deep dives into the many complexities and interconnected cross departmental collaboration components that are required for comprehensive Insider Threat Investigations.
The training will use Insider Threat incident case studies and employee threat scenarios to help students identify / detect the various early warning signs / indicators that employees may generate, before an actual incident occurs. This will enhance the students’ abilities in identifying employee risks and threats, and for collaborating with key stakeholders to gather additional information that can help with investigating and responding to Insider Threats. Students who attend this training will receive an: Insider Threat Investigator / Analyst Certificate - Credential.
Course Feedback:
Insider Threat Defense Group training courses have been endorsed by our students (U.S. Government, Private Sector) as the most affordable, next generation and value packed training for Insider Risk Management, that are taught from a real world, practical, strategic, operational and tactical perspective. Our student satisfaction levels are in the exceptional range. We encourage you to read the feedback on the link below.
https://www.insiderthreatdefense.us/wp-content/uploads/2024/05/insider-…

Course Overview

Overall Proficiency Level

2 - Intermediate

Course Prerequisites

No required prerequisites.

Training Purpose

Management Development

Specific Audience

All

Delivery Method

Classroom

Online, Instructor-Led

Course Location

500 Scotia Drive, #305
Latana, FL 33462

Course Location Map

Your Location
Providers
Courses
Course and Provider Quantity

Classroom
Online, Instructor-Led

Learning Objectives

Learning Objectives
1- Understand the critical components for an Insider Risk Management Program and the key stakeholders responsibilities that are required to support Insider Threat investigations.
2- Understand the legal considerations on the collection, use and sharing of employee risk - threat information.
3- Identify disgruntled employees and behavioral indictors of concern to an Insider Risk Management Program.
4- Identify essential data sources required for Insider Threat Investigations (Technical, Non-Technical, Internal, External).
5- Create the procedures and framework for Insider Threat reporting, conducting investigations and generating investigative reports.
6- Evaluate Network Security & Insider Threat Detection Tools to identify gaps in detection capabilities.
7- Understand the various techniques that malicious Insiders can use for exfiltrating data and Information, that can bypass technical detection capabilities.

Framework Connections

The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):

Competency Areas

Work Roles

Feedback

If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.

Last Published Date: May 22, 2025