FORCEPOINT CONSULTING SERVICES:

USER AND DATA SECURITY PROGRAMS

 Forcepoint Consulting Services: User and Data Security Programs

Protecting data, intellectual property, and information

systems from accidental and intentional employee misuse
is critical to preventing losses that can devastate profits,
brand reputation, and employees’ livelihoods. CISOs and
other security professionals understand these stakes, but
their jobs are harder than ever in the new IT operating
model that embraces cloud and mobility. Data is now
everywhere and can be accessed anywhere, and most
cyber activity is increasingly happening on networks that
are not owned or managed by the organization. Forcepoint Human Point System User
and Data Security Programs precept:
The Forcepoint Human Point System is designed
for this new world of expanded threats. Forcepoint Privacy, legal, and data protection requirements are
consulting services capitalize upon the work we’ve not impediments to effective security programs;
done with commercial and government customers they are vital underpinnings upon which effective
to develop effective, risk-based programs to protect risk reduction efforts are built, and they promote
data, intellectual property, and information systems trust and transparency while safeguarding the
from intentional and unintentional insider risk. Our workforce and the organization.
privacy-by-design precept of the Forcepoint Human
Point System User and Data Security Program Model
helps organizations restore confidence in the adoption
of cutting-edge technologies while maintaining the trust
The ideal user and data security program takes a holistic
of the workforce and preventing adverse impacts to a
approach to protecting an organization’s assets with the
thriving culture. Our experts can help organizations strike
following core principles:
the balance of interests between structured defense
programs and human agency that fuels a motivated and  Address risks within a legal, ethical, and policy
productive workforce. framework to ensure privacy protections
 Deploy a continuous assessment capability
Forcepoint consulting services help organizations:  Deploy analytics to discover potential threats, focusing
 Objectively measure organizational readiness to on the most valued assets
defend against insider threats  Provide solutions to help correlate the indicators and
 Design a custom-fit user and data security program review events in context
future state that meets familiar cultural requirements  Eliminate repudiation with an effective identity
while implementing proven risk management management system
best practices
 Partner with Forcepoint experts who have helped
integrate holistic and proactive human-centric security
programs in enterprises for more than 15 years
 Operationalize technologies and improve processes
to enable better and clearer decisions about what is
“good” and “bad” based upon the organization’s
risk profile
 Train stakeholders and working groups in state-of-the-
art threat mitigation, detection, and response to boost
program development and performance

www.forcepoint.com 2
 Forcepoint Consulting Services: User and Data Security Programs

Integration Data Collection

with Enterprise & Analysis Tools,
Risk Management Techniques,
Policies, & Practices
Insider Threat
Formalized and Insider Threat Procedures Practices Related
Defined Program Response Plan & Practices to Trusted
to Support Business
Oversight the InTP Partners
of Program Communication Insider Threat
Compliance & of Insider Training &
Effectiveness Threat Events Awareness
Confidential Protection of Prevention,
Reporting Employee Civil Detection,
Organization-wide
Procedures Liberties & & Response
Participation
& Mechanisms Privacy Rights Infrastructure

Forcepoint Consulting Service Areas  Business processes

Insider Threat Vulnerability Assessment  Trusted partners

Forcepoint’s partnership with the Carnegie Mellon
University Software Engineering Institute (SEI) enables
our certified consultants to deliver the SEI-licensed
Insider Threat Vulnerability Assessment (ITVA) service.
SEI developed the ITVA methodology and criteria to help
organizations assess how prepared they are to prevent,
detect, and respond to insider threats. It’s based upon SEI’s
analysis of more than 1,300 documented cases in which
malicious insiders took advantage of process or control
weaknesses to negatively impact an organization.
We provide an unparalleled assessment by combining
the formal standards of the ITVA with years of program
experience—as well as technical and operational
expertise—to provide organizations with a detailed
assessment of their current state of readiness to defend
against the insider threat.
The assessment identifies technical vulnerabilities,
business process gaps, and inadequate management
practices. The Insider Threat Vulnerability Assessment
examines practices within, and attributes of:
 Information technology
 Human resources
 Physical security
 Engineering
SEI-Authorized Insider Threat Vulnerability Assessors
will conduct on-site document reviews, interviews of key
personnel, and observation of critical business processes.
The assessment report documents the key findings of the
organization’s exposure to insider threats along multiple
vectors (e.g., technical, behavioral, process, and policy).
User and Data Security Program Design
There is no shortage of guidance from regulatory,
industrial, trade, and government bodies; however, their
best practices are frequently duplicative, not well organized
for the stages of program development, and difficult
for program managers to interpret, tailor, and apply.
Additionally, experience-driven guidance is often lacking
in practical areas of typical, daily program operations.
References relevant to different customers include:
 Carnegie Mellon University (CMU) Software Engineering
Institute (SEI) CERT Insider Threat Center
 Federal Financial Institutions Examination Council (FFIEC)
 Financial Industry Regulatory Authority (FINRA)
 Institute for Critical Infrastructure Technology (ICIT)
 Intelligence National Security Alliance (INSA)
 National Industrial Security Program Operating Manual
(NISPOM)
 National Infrastructure Advisory Council (NIAC)

www.forcepoint.com 3

 National Insider Threat Task Force (NITTF)
 National Institute of Standards and Technology (NIST)
 Payment Card Industry (PCI) Data Security Standard (DSS)
 Securities Industry and Financial Markets Association
(SIFMA)
The User and Data Security Program Design service
incorporates built-in privacy-by-design and governance
controls to help organizations prevent, detect, and respond to
risks posed to information systems and the data they contain.
Through the implementation of a cross-functional core
group, the Human Point System User and Data Security
Program Model supports organization-wide efforts to
put the relevant best practices for program operations
to work. Its risk-mitigating practices and techniques
include helpful guidance developed from years of
extensive experience guiding organizations through design
decisions and activities. The model architecture includes
operational advice covering privacy, governance, roles and
responsibilities, working groups, training and awareness,
incident response, case management, and data handling.
Insider Threat Program Development
The development of a Human Point System User and Data
Security Program may seem like a daunting task, but that
is simply not the case. Through the program, Forcepoint’s
consultants will expedite organizations toward achieving
the desired future state of the program with sample project
plans, templates, and assistance in developing processes
and project artifacts.
Organizations benefit from our deep understanding of
developing the initial operating capability and the project
activities necessary to continuously improve and mature
its effectiveness. The privacy-by-design and governance
standards reflected in the Forcepoint Human Point System
User and Data Security Program Model encompass all
the activities required to establish a transparent and
trustworthy program in the enterprise.
www.forcepoint.com
Forcepoint Consulting Services: User and Data Security Programs
Insider Threat Operations
Forcepoint consulting staff provide a comprehensive
range of services in support of user and data security
program operations. Consulting services in this area are
customizable based on need. Examples of operations
support include:
 Enhancing privacy and data protection
 Investigations support
 Program training
 Data and technology fusion
 Data analysis
 Incident response
 Standard operating procedures enhancement
 Audit and compliance
 Program metrics, reports, and communications
 Program review
 Operationalize Human Point System components
 Human Point System expansion (e.g., UEBA, DLP, FIT,
Cross Domain) and operations maturation
Insider Threat Workshops
A hallmark of the Forcepoint Human Point System User
and Data Security Program Model is the early training
of senior leadership, program managers, and cross-
functional team members. Development and operations
teams are set up for success through a common
understanding of program design, risk mitigation
strategies, and key steps to launching successful
programs.
Customizable workshops include:
 Insider Threat Awareness and Fundamentals
 Attributes and Best Practices of Successful Insider
Threat Programs
 Best Practices Controls for Mitigating the Insider
Threat Risk
 Principal Steps to Getting the User and Data Security
Program Started
4
ABOUT FORCEPOINT
Forcepoint is transforming cybersecurity by focusing on what matters
most: understanding people’s intent as they interact with critical data
and intellectual property wherever it resides. Our uncompromising
systems enable companies to empower employees with unobstructed
access to confidential data while protecting intellectual property and
simplifying compliance. Based in Austin, Texas, Forcepoint supports
more than 20,000 organizations worldwide. For more about Forcepoint,
visit www.forcepoint.com and follow us on Twitter at @ForcepointSec.

CONTACT
www.forcepoint.com/contact

© 2018 Forcepoint. Forcepoint and the FORCEPOINT logo are trademarks of

Forcepoint. Raytheon is a registered trademark of Raytheon Company. All other
trademarks used in this document are the property of their respective owners.

[WHITEPAPER_CONSULTING_SERVICES_EN] 200067.042518