Overview

Sponsored by the Office of the Secretary of Defense (OSD), the United States Cyber Command, the United States Army Research Laboratory, the United States Navy Research Laboratory, and the Joint Force Headquarters Department of Defense Information Network, the Joint Cyber Insider Threat (J-CIT) Joint Test (JT) Project was established to assist the Department of Defense (DOD) in developing joint tactics, techniques, and procedures (TTPs) to anticipate, detect, analyze, and diagnose the cyber insider threat BEFORE there is an impact on military operations.
Until the establishment of the J-CIT JT Project, the DOD had examined aspects of the insider threat at the technical and operational levels, but in a fragmented and piecemeal manner. In fact, many DOD organizations did not have a joint capability to categorize the precise nature of the insider threat as existential or its origin until the damage had been sustained. In essence, DOD cyber defenders have been constantly blindsided by insider threat attempts and unable to generate information with the high–enough level of confidence to know that someone was committing an insider attack until it is too late to intervene.
The J-CIT JT Project has provided DOD cyber defenders with joint TTPs to proactively help them anticipate, detect, analyze, diagnose, and prevent the cyber insider threat before they have an impact on our military operations.
The resulting J-CIT JT TTPs will be institutionalized throughout all 23 DOD Cybersecurity Service Providers (CSSPs). Furthermore, sponsoring organizations anticipate adoption of J-CIT TTPs by all DOD Components to include OSD, the Military Departments, the Office of the Chairman of the Joint Chiefs of Staff and the Joint Staff, the Combatant Commands, the Office of the Inspector General of the DOD, the Defense Agencies, the DoD Field Activities, and all other organizational entities within the DOD.