CERT has been investigating the use of system dynamics to better understand the threat to an organization’s information technology (IT) systems posed by malicious employees or contractors of that organization. At the 2006 International System Dynamics Conference we published a system dynamics model that was originally intended to be used as an interactive simulation in a workshop on insider threat. We believed that the model and simulation would effectively communicate the risks and mitigations involved in the insider threat problem. Through several pilots of the model-based workshop we learned how to better use system dynamics modeling as the basis for communicating complex concepts within the insider threat domain to an audience of business and IT managers not familiar with, or interested in becoming familiar with, system dynamics modeling. This paper describes the MERIT model and the development and evolution of the insider threat workshop based on this model.

This is the whole item.

Date created

• 2007 July 29-2007 August 2

Type

• Document

Processing Activity

• Processing documentation available at: https://wiki.albany.edu/display/SCA/Processing+Ingested+Digital+Files

License

• Creative Commons BY-NC-ND Attribution-NonCommercial-NoDerivs 4.0 International

  
  Contact Us for questions or additional rights.

ITEM CONTEXT

Part of

298eed5a7fe199ac661be72f3a39f134

Scope and Contents

Part of

0619e689ce89476bfd3b88323c5a9410

Scope and Contents

Part of

23d738ba88f8333bc39725f9cb5bd0b8

Scope and Contents

Collection

System Dynamic Society Records

Scope and Contents

Collecting area

• This collection is part of the University Archives