The UAH Insider Threat Program Plan applies to all faculty, staff, and students with access to any government or contractor resources to include personnel, facilities, information, equipment, networks, or systems.

UAH is subject to insider threats and will take actions to address threats and personnel at risk of becoming a threat. UAH will continually identify and assess threats to the organization and its personnel and implement a program with capabilities designed to reduce risk.

Insider Threat comes from any person with authorized access to any U. S. Government or UAH resources who uses that access either wittingly or unwittingly to do harm. The best defense is an active one, which helps to identify the threat before loss of information, and to serve as an effective deterrent. By reporting adverse information, suspicious activities and other insider threat indicators, you will actively help to detect, deter and mitigate the insider threat to UAH.

Insider Threat Indicators:

  • Unreported requests for critical assets outside official channels
  • Unreported offers of financial assistance, gifts, or favors by a foreign national or stranger
  • Unauthorized downloads or copying of files
  • Seeking to obtain access to critical assets inconsistent with present duty requirements
  • Attempting to conceal any work-related or personal foreign travel
  • Frequently working after hours or at unusual times
  • Attempts to expand access
  • Changes in financial circumstances (affluence or financial difficulties)
  • Repeated and continued patterns of performance deterioration

The protection of classified and proprietary information is in your hands; it is up to you to report. Insider Threat Reporting Contact Janine Wilson janine.wilson@uah.edu or orsnotifications@uah.edu  DCSA emphasizes the importance of reporting suspicious emails and activities to help identify and mitigate cyber threats and protect national security.

Please remember, if you receive a suspicious email, especially one related to security clearances or that seems to be a phishing attempt, report it immediately to ORS by doing the following:

After all, you are the Center of Security!

Reporting the Threat