Coffee & Conversation with James Shappell

On Tuesday, August 26, INSA hosted a virtual Coffee & Conversation with James Shappell, Director, DoD Insider Threat Management & Analysis Center, DCSA. and INSA President Suzanne Wilson Heckenberg.  

Event recording courtesy of SIMS Software!

In the 45 minute Q&A, Mr. Shappell provided a brief overview on DoD Insider Threat Management & Analysis Center (DITMAC), and its mission of providing enterprise-level support to the DoD and professionalizing insider-threat capabilities. He shared the different focuses of DITMAC, such as supporting DoD organizations with insider-threat analytics, incorporating behavioral analysis into insider-threat mitigation, and conducting assessments of DoD insider-threat programs to ensure adherence to standards. 

Mr. Shappell identified some of the most prevalent and developing insider-threat risks, among which were the RTO mandate and the solicitation of recently dismissed workers. He advised safeguarding against solicitation through the use of DCSA training materials and the maintenance of standards with reduced workforce sizes. Mr. Shappell shared insight into the use of AI by DITMAC and DCSA, adding that using factors such as predispositions, potential stressors, behavioral changes, as well as understanding the gaps in data, are central to building an AI model that can accurately map insider threat risk.  

Addressing AI threat concerns such as deep-fakes and data security, he advised due diligence on both the part of the public as well as insider threat professionals. He stressed the importance of being cognizant of what available material could be used to potentially create a deep-fake. Concerning data security and the use of AI, he advocated for the use of de-identified data in constructing AI models.  

On the topic of collaboration between DCSA and DITMAC with private sector entities, Mr. Shappell encouraged companies wishing for strengthened interaction with the DCSA to pursue so through their insider threat representatives by hosting discussions on best practices. He noted that sharing insider threat information and technology with private companies can be challenging due to clearance requirements but that the DoD is actively strengthening insider threat capabilities in the private sector.  

In closing, Shappell highlighted the importance of early detection in the context of insider threat risk assessment. The incorporation of climate surveys and the analysis of emerging data trends all contribute to this early detection. He referenced emerging AI-driven technologies that will aid in analyzing insider threat risk from a location basis, as well as increased behavioral training to help identify and prevent insider threat risks. He expressed that these practices all fit within the Secretary of Defense’s broader goals of aiding warfighter capabilities.