Different agencies and departments have different lists of behavior indicators. Most have adopted the traditional red flags for espionage. They include financial stress, disregard for security practices, unexplained foreign travel, unusual work hours and unexplained or sudden wealth.
But agencies and their consultants have added their own indicators.
For instance, an FBI insider threat detection guide warns private security personnel and managers to watch for a desire to help the underdog or a particular cause, a James Bond Wannabe and a divided loyalty: allegiance to another person or company or to a country besides the United States.
A report by the Deloitte consulting firm identifies several key trends that are making all organizations particularly susceptible to insider threat today. These trends include an increasingly disgruntled, post-Great Recession workforce and the entry of younger, Gen Y employees who were raised on the Internet and are highly involved in social networking.
Some government programs that have embraced behavioral indicators have been condemned as failures. Perhaps the most heavily criticized is the Transportation Security Administrations Screening of Passengers by Observation Techniques, or SPOT, program.
The program, which has cost $878 million and employs 2,800 people, uses behavior detection officers to identify potential terrorists by scrutinizing airline passengers for signs of stress, fear or deception.
DHS inspector general excoriated the program, saying in a May 2013 report, TSA cannot ensure that passengers at United States airports are screened objectively, show that the program is cost-effective or reasonably justify the programs expansion.
Interviews and internal complaints obtained by The New York Times quoted TSA officers as saying SPOT has led to ethnic and racial profiling by emphasizing certain profiles. They include Middle Easterners, Hispanics traveling to Miami and African-Americans wearing baseball caps backward.
Another problem with having employees report co-workers suspicious behaviors: They arent sure which ones represent security threats.
Employees in the field are not averse to reporting genuine security infractions. In fact, under appropriate conditions they are quite willing to act as eyes and ears for the government, said a 2005 study by the Pentagons Defense Personnel Security Research Center. They are simply confused about precisely what is important enough to report. Many government workers anguish over reporting gray-area behaviors.
Even so, the Pentagon is forging ahead with training Defense Department and contractor managers and security officials to set up insider threat offices, with one company emphasizing how its course is designed for novices.
The Establishing an Insider Threat Program for Your Organization Course will take no more than 90 minutes to complete, says the proposal.
Officials with the Army, the only government department contacted by McClatchy that agreed to discuss the issue, acknowledged that identifying potential insider threats is more complicated than relying on a list of behaviors.
What we really point out is if youre in doubt, report, because thats what the investigative personnel are there to do, is to get the bottom of is this just noise or is this something that is really going on? said Larry Gillis, a senior Army counterintelligence and security official.
The Army implemented a tough program a year before Obamas executive order after Maj. Nidal Hasan, a U.S.-born Muslim, allegedly killed 13 people in a 2009 rampage at Fort Hood, Texas. Hasan, who has not gone on trial, has said he was defending the Afghan Taliban.
Gillis said the Army didnt want a program that would get people to snitch on each other, nor did it want to encourage stereotyping.
We dont have the luxury to make up reasons to throw soldiers out, Gillis said. Its a big deal to remove a soldier from service over some minor issue. We dont want to ruin a career over some false accusation.
But some current and former U.S. officials and experts worry that Obamas Insider Threat Program could lead to false or retaliatory accusations across the entire government, in part because security officials are granted access to information outside their usual purview.
These current and former U.S. officials and experts also ridiculed as overly zealous and simplistic the idea of using reports of suspicious behavior to predict potential insider threats. It takes years for professional spy-hunters to learn their craft, and relying on the observations of inexperienced people could lead to baseless and discriminatory investigations, they said.
Anyone is an amateur looking at behavior here, said Thomas Fingar, a former State Department intelligence chief who chaired the National Intelligence Council, which prepares top-secret intelligence analyses for the president, from 2005 to 2008.
Co-workers, Fingar said, should be attentive to colleagues personal problems in order to refer them to counseling, not to report them as potential security violators. Its simply because they are colleagues, fellow human beings, he said.
Eric Feldman, a former inspector general of the National Reconnaissance Office, the super-secret agency that oversees U.S. spy satellites, expressed concern that relying on workers to report colleagues suspicious behaviors to security officials could create a repressive kind of culture.
The answer to it is not to have a Stasi-like response, said Feldman, referring to the feared secret police of communist East Germany. Youve removed that firewall between employees seeking help and the threat that any employee who seeks help could be immediately retaliated against by this insider threat office.
CORRECTION: A story about the Obama administration's Insider Threat Program gave the wrong name and title for Deanna Caputo, the principal behavioral psychologist at MITRE Corp.






















My Yahoo