Monthly Member Webinar held on July 24, 2020
Speaker: Carl Willis-Ford, Doctor of Information Assurance and faculty at Whatcom Community College
Dr. Carl Willis-Ford is a Solutions Architect for GDIT in the Federal Health Sector. He served in the U.S. Navy as a Nuclear Reactor Operator on fast attack submarines from 1980-1988. He has 30+ years in project management, security training, technical architecture, and data security. He is also adjunct faculty (soon to be full-time) in the CIS/Cybersecurity Program at Whatcom Community College in Bellingham, WA. He is a Senior Member of the Information Systems Security Association.
Dr. Willis-Ford holds: B.S. in Computer Science, M.S. in Network Security, M.S. in Technology Management, and a Doctorate of Information Assurance
While many Insider Threat assessments only include two categories (malicious and unintentional), there exists a strong argument to include a third category, the non-malicious insider – employees that knowingly violate security policy, but not for malicious purposes. These employees present significant risk that may be at worst overlooked, at best underestimated, and impact both cyber and physical security. Participants will hear significant examples of how non-malicious insiders unwittingly participated in major data breaches by malicious insiders and outsiders. Research-based and practical approaches will be presented for recognizing and managing the non-malicious insider, resulting in an improved overall security posture.