The DOD Insider Threat Program is charged with protecting the Pentagon national security systems from insider threats across the globe. The group has developed policies and assigns responsibilities for preventing, detecting and mitigating damaging actions by insiders, intentional or otherwise. The program is expected to monitor and audit information from an ever changing variety of sources to identify threats from within. However, with the explosion in the number of information sources to internalize and exploit, it can be challenging to correlate and contextualize the world reality in organizational knowledge. 

From information that exists in internal information sources such as email, text messages, human resource and other proprietary information in silos - to external data feeds, web search and open source data sets, it can seem impossible to aggregate data and extract precise information to identify potential insider-threat behavior.

This panel discussion will examine how the DOD will the "sort through the noise" of multiple data sources to indicate a potential threat from within.