Our Initiatives
12 ASIS Continuing Professional Education (CPE) Credits - Aligns with ASIS Certified Protection Professional (CPP), Physical Security Professional (PSP), and Associate Protection Professional (APP) certification programs
This course is instructed online and focused on screening and risk factors (12 learning hours over two days). Learning objectives include:
​
•Broadened understanding of insider threat with an emphasis on the security screening process,
​
•Heightened ability to recognize (i.e., red flags), detect and defend against insider risks within organizations,
•Introduction to motives or personal situations that may increase an employee’s likelihood to act out against an employer,
•Practical knowledge of a risk factor framework used to recognize behaviours indicating potential employee concern and management of residual risks,
•Awareness of continuous assurance (i.e., aftercare) measures that can be used with current employees, as well as considerations upon an employee departing an organization, and,
•Understanding of personal social media presence and related company strategies.
Featured Instructor
​
Mr. Brian Thompson
​
Brian is the C-InRM CoE Chief Learning Officer and has over 40 years of experience in the Canadian Armed Forces, Department of National Defence, and the Royal Canadian Mounted Police.
Over the past several years, he has conducted risk-based security screening and insider risk training, as well as advised and consulted on various personnel security files. He holds an M.A. degree in personality psychology from the University of Manitoba and is certified as an Insider Threat Program Manager and Vulnerability Assessor from Carnegie Mellon University.
*Remote learning offered as part of Carleton University, Norman Paterson School of International Affairs, Professional Training and Development (PT&D) program
SAMPLE
*Required Pre-Requisite - Practical Certificate in Insider Risk Management – Foundations for Screening and Risk Factors
This course will be instructed in-person.
Featured Instructor
​
Mr. Denis Desnoyers
​
Denis is an Associate Instructor and retired Superintendent with over 35 years of experience in the Royal Canadian Mounted Police (RCMP).
In Denis' career with the RCMP he held the following notable positions:
-
Officer in Charge of Sensitive and International Investigations;
-
Contingent Commander, Haiti;
-
Senior Investigator Elections Canada;
-
Officer in Charge Ottawa Detachment;
-
Officer in Charge Integrated Market Enforcement Operations;
-
Senior Police Advisor Afghanistan;
-
Divisional Intelligence Officer;
-
Detective Inspector Commercial Crime;
​
His academic background includes Carleton University (Criminology), University of Waterloo (Accounting and Related Services), and Algonquin College of Applied Arts and Technology (Criminal Justice/Police Science.
Course Testimonials
Honestly, can't think of one bad thing to say about this class. Prof. Munro was amazing, as were the guest speakers
Really helps understanding real-life applications of insider threat in the private sector
Thanks so much for an excellent course!
Great to hear from practitioners in the field
Really enjoyed the practical, real world examples from various industries!
International Affairs (INAF) 5469 R - Insider Risk, Threat, and Mitigation
The objective of this seminar is to introduce students to the concept of malicious insider threats, defined as “a current or former employee, contractor, or business partner…negatively affecting the confidentiality, integrity, availability” of an organization’s assets including its workforce, along with risk management theory and industry standards to control for—and mitigate—threats.
​
It will contextualize insider threat as a subset of defensive counter-intelligence, within the broader intelligence studies literature. This seminar will trace the historical development of counter-intelligence practices in Western nation-state governments in the mid-20th century to the present, as well as contemporary insider threat programs that began appearing in the public and private sectors in the late 1970s, through various case studies of notable compromises.
​
It will examine insider threat typology primarily under capability-motivation (money, ideology, compromise, ego—MICE)-opportunity (CMO) and pathway to harm theoretical frameworks and consider present-day security risk policy formulation and industry mitigation control standards against threat-type, ethical and privacy considerations, and consider macro-environmental factors that may serve as “triggers” for future potential threats.
​
The present state of academic and industry research on insider threat, quantitative and qualitative streams, will be reviewed.
On completion of the seminar, students will have a broad and comprehensive understanding of insider risk, the ability to reflect critically on insider threat-related research, and industry mitigation practices.
Finally, students will also have gained practical experience on developing and delivering outputs that are expected by the industry at large from practitioners in this field.
Sessional Lecturer
​
Mr. Victor Munro
​
Victor is the C-InRM CoE Executive Director and an experienced cyber strategy, security and insider risk, and threat intelligence consultant with 20 years of experience in Canadian federal government security and intelligence, public finance critical infrastructure, and private global multi-national IT services sectors. He has helped organizations implement insider threat, cloud security, and incident management strategies and programs to manage risk and enhance organizational resiliency.
*Must be a graduate student presently enrolled in Carleton University, Norman Paterson School of International Affairs. May not be offered every academic term - to confirm, consult Carleton University's Registrar's Office, and refer to the INAF subject.
National Pilot Initiative - Operational Information Exchange (OIE)
*Only open to Canadian Organizations*
This is an initiative to enhance partnerships with Canadian entities and allow the C-InRM CoE to foster a centralized initiative to promote the sharing of information regarding:
​
-
Insider risk management (InRM) program implementation and best practices;
-
General situational awareness of the insider threat environment in Canada; and,
-
Promote best practices in Canadian InRM.
Please contact us for more details if your organization is interested in joining.
Lead Facilitator
​
Ms. Lina Tsakiris
​
Ms. Tsakiris is a Director of a Global Insider Risk Management Program for a multinational IT infrastructure and business consulting provider. She is responsible for the implementation and oversight of a future forward Insider Risk Management program and capability that aligns to organizational culture and is effective in its risk mitigation controls.
​
Ms. Tsakiris has almost three decades of global security management experience and has held various senior leadership roles where she has led and supported large teams in global security operations, employee & executive protection, security threat assessments, major incident management, physical security technology, robbery prevention and insider threat management. She is a strong visionary and builder of things aimed at transforming, disrupting and creating digital forward capabilities to enable new ways of working, while effectively managing security risks.
​
Ms. Tsakiris serves as a Senior Fellow at Carleton University’s Infrastructure Protection and International Security Program and is a Co-Chair of the Canadian Insider Risk Management Centre of Excellence. She is also an executive volunteer with several professional associations including the Executive Committee for the ASIS International Professional Certification Board; ASIS Women in Security (SC Emeritus).
National Study - Insider Threat Monitoring Theory
Call for industry participation
Rigorous research on insider threat mitigation based on real case studies with moderate to large sample sizes are not generally available for research--none exist in Canada.
​
In Canadian organizations, which monitoring controls are the most important, and what sources of data have been crucial to earlier detection, resulting in an organization not being attacked, or limiting injury from insider threat attacks?
Lead Researcher
​
Mr. Victor Munro
​
Victor is the C-InRM CoE Executive Director and an experienced cyber strategy, security and insider risk, and threat intelligence consultant with 20 years of experience in Canadian federal government security and intelligence, public finance critical infrastructure, and private global multi-national IT services sectors. He has helped organizations implement insider threat, cloud security, and incident management strategies and programs to manage risk and enhance organizational resiliency.
*To learn more, contact Victor
National Pilot Initiative - Canadian Insider Threat Dataset (CITD)
*Phase 1 industry consultations are complete. If your organization would like join a Phase 2 industry proof-of-concept pilot, please inquire by December 31, 2023.*
A Taskforce has been established to discuss and establish the parameters for a secure, centralized, intake portal for anonymized incident reporting, and share aggregate details to a closed research community of academic, private, and public partners. Outcomes include:
​
-
Collaboration to define an incident attribute taxonomy for reporting insider threat attacks;
-
Production of an aggregate real incident dataset for research, policy and program building, and mitigation purposes; and,
-
Pilot the governance, policies, and operations of the CITD initiative.
A White Paper has now been published, detailing the aggregate findings and recommendations of the Taskforce.
If you require a centralized insider risk management partner to assist you...
