Randy Trzeciak

Session In Development •

The CERT Insider Threat Center at Carnegie Mellon University is one of the world's leading authorities on detecting insider fraud, and it has just released Version 6 of its Best Practices to Mitigating Insider Threats. As part of this research, the center addresses how to detect and prevent insider fraud, as well as...

Preview this Session

►

Best Practices for Mitigating Insider Fraud

Randy Trzeciak - CMU • •

Start this Session

►

Best Practices for Mitigating Insider Fraud

Randy Trzeciak - CMU • •

Start this Session

►

Stand up an Insider Threat Program to Stop Malicious and Accidental Insiders

Randy Trzeciak - CMU • •

When it comes to fraud prevention, many organizations overlook the insider threat - both the malicious actor who intends to commit fraud, as well as the accidental insider who makes a mistake or is taken advantage of by an external entity? The CERT Insider Threat Center at Carnegie Mellon University is one of the...

Start this Session

►

Insider Threat Program Goals: Thwarting Malicious and Accidental Insiders - Why Are We Still Failing?

Randy Trzeciak - CMU • •

When it comes to fraud prevention, many organizations overlook the insider threat - both the malicious actor who intends to commit fraud, as well as the accidental insider who makes a mistake or is taken advantage of by an external entity? This topic is particularly relevant now, when many public and private sector...

Start this Session

►

Insider Threat Program: An Essential Component of Every Cybersecurity Compliance Program

Randy Trzeciak - CMU • •

Since 2011, the US federal government has required agencies to establish insider threat detection and prevention programs. What are the elements of a successful insider threat program, and how can these help non-government entities improve their own defenses and regulatory compliance? The CERT Insider Threat Center at...

Start this Session

►

Insider Threat Program: An Essential Component of Every Cybersecurity Program

Randy Trzeciak - CMU • •

Some of the biggest health data breaches - including headliner Wall of Shame breaches in 2018 - are due to insiders who click on phishing emails, and fall for business email compromise scams. While there is also plenty of record snooping by insiders, healthcare also has its share of malicious bad actors looking to...

Start this Session

►

Stand up an Insider Threat Program to Stop Malicious and Accidental Insiders

Randy Trzeciak - CMU • •

Start this Session

►

Stand up an Insider Threat Program to Stop Malicious and Accidental Insiders

Randy Trzeciak - CMU • •

Start this Session

►

Know Your Attacker: Lessons Learned from Fraud investigations

Alexis Castellani - Citi, Kevin M. McCleary - US Secret Service, Randy Trzeciak - CMU • •

"Know your customer" is a familiar refrain in banking circles. But as threat actors grow in number, sophistication and cross-channel schemes, it is increasingly important for organizations to also have a clear picture of their potential attackers - whether they are nation-states, cybercrime gangs or lone actors. In...

Start this Session

►

How to Start Up an Insider Threat Program to Reduce Fraud

Randy Trzeciak - CMU • •

When it comes to fraud prevention, many organizations overlook the insider threat - both the malicious actor who intends to commit fraud as well as the accidental insider who makes a mistake or is taken advantage of by an external entity. The CERT Insider Threat Center at Carnegie Mellon University is one of the...

Start this Session

►

Insider Threat Detection: Lessons from the Trenches Based on Real Insider Cases

David Pollino - Bank of the West (BNP Paribas), Randy Trzeciak - CMU • •

What are the biggest threats to your organization's data? Recent media attention to high-profile cyberattacks would lead an organization to think external threats are its only concern. Unfortunately, this misconception allows another significant threat to your organization's critical assets to stay completely under...

Start this Session

►

Insider Threat Detection: How to Develop a Successful Program

Randy Trzeciak - CMU • •

Start this Session

►

Insider Threat Detection: How to Develop a Successful Program

Randy Trzeciak - CMU • •

What are the biggest threats to your organization's data? Recent high-profile cyberattacks would lead an organization to believe that its external threats are the most concerning. Unfortunately, this misconception allows another significant threat to your organization's critical assets to remain completely under the...

Start this Session

►

Archived

Insider Threat Detection: How to Develop a Successful Program

Archived Session •

Randy Trzeciak - CMU • •

Start this Session

Please fill out the following fields
(All fields required):

Subscription Preferences:

CyberEd

Director, CERT Insider Threat Center, CMU

Trzeciak heads a team focusing on insider threat research, threat analysis and modeling, assessments and training. He has more than 20 years of experience in software engineering, focusing on database design, development and maintenance. In addition to his role with CERT, he is an adjunct professor at Carnegie Mellon's Heinz College, Graduate School of Information Systems and Management.

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Alexis Castellani

Senior Vice President - Cyber Fraud Prevention, Citi

Alexis Castellani is the Intelligence Manager for Citi's Global Cyber Fraud Prevention organization, responsible for overseeing the collection and analysis of cyber fraud intelligence. She partners closely with Citi cyber security, fraud and intelligence operations, as well as law enforcement and other external organizations to enhance Citi's understanding of the cyber fraud landscape and emerging threats. Prior to joining Citi, Alexis served 9.5 years with the FBI as an Intelligence Analyst focused on counterterrorism matters, with additional experience investigating nation-state cyber intrusion.

View all sessions by Alexis Castellani

Kevin M. McCleary

Assistant to the Special Agent in Charge, Criminal Investigative Division, US Secret Service

Having began his career with the U.S. Secret Service in 1999, McCleary is currently assigned to the National Cyber-Forensics & Training Alliance's New York satellite office as the USSS Criminal Investigative Division's detailee. The NCFTA is a non-profit organization founded in 2002 that's composed of law enforcement, private industry and academic experts. It's focused on the identification, mitigation and neutralization of cyber threats through strategic alliances between member organizations.

View all sessions by Kevin M. McCleary

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

Randy Trzeciak

Director, CERT Insider Threat Center, CMU

View all sessions by Randy Trzeciak

David Pollino

Chief Cybersecurity Officer, Bank of the West (BNP Paribas)

Pollino is responsible for fraud prevention oversight and education at the bank. Pollino was recently named a top ten influencer by Bank Information Security. Prior to joining Bank of the West, Pollino served in senior fraud prevention positions for Wells Fargo, Washington Mutual, and Charles Schwab. During his career, Pollino has also worked as an information security consultant at @stake and UUNET advising Fortune 100 companies on information security issues. Pollino is the author of RSA Press: Wireless security, The Hacker's Challenge Books 1, 2 and 3, and Hacking Exposed: Wireless and frequently contributes to the Bank of the West blog.

View all sessions by David Pollino