Software Engineering Institute

This booklet summarizes the findings of a recent study of insider fraud funded by the U.S. Department of Homeland Security (DHS) Science and Technology Directorate (S&T) and conducted by the CERT Insider Threat Center, the U.S. Secret Service (USSS), the U.S. Department of the Treasury, and the U.S. financial services sector. This study analyzed insider and outsider computer criminal activity in the financial services sector to help security professionals prevent, detect, and manage malicious insider activity and risk. The full report contains more information, including more detailed recommendations, fraud models that describe internal fraud activities, and more details about how the study was conducted.

This booklet is related to the report Insider Threat Study: Illicit Cyber Activity Involving Fraud in the U.S. Financial Services Sector, which is part of the work by the CERT Insider Threat Center.