Scientific advances to Continuous Insider Threat Evaluation


The SCITE program seeks to develop and test methods to detect insider threats through two separate research thrusts. Insider threats are individuals with privileged access within an organization who are, or intend to be, engaged in malicious behaviors such as espionage, sabotage or violence. Current practice and research in the detection of potential threats examine both internal organizational data sources (e.g., intranet search patterns) and, where appropriate, external data sources (e.g., financial records), apply various tools to passively monitor the data sources to automatically detect instances of possible insider threat indicators, aggregate automated detections to generate an initial risk assessment, and, based on that automated risk assessment, select a small number of insiders who are further examined by insider threat analysts.

The first research thrust will develop a new class of insider threat indicators, called active indicators, where indicative responses are evoked from potential insider threats. The second research thrust will develop Inference Enterprise Models (IEMs) that forecast the accuracy of existing and proposed systems for detecting insider threats.

Related Publications

To access SCITE program-related publications, please visit Google Scholar.

Contact Information

Program Manager

Main Office

Research Area(s)

Evidence-based forecasting methods, Inductive logic, Probability and mathematics

Related Program(s)

Broad Agency Announcement (BAA)

Link(s) to BAA


Solicitation Status


Proposer's Day Date

April 16, 2015

BAA Release Date

June 18, 2015

BAA Question Period

June 18, 2015 — July 20, 2015

Proposal Due Date

Monday, 10 August 2015

Prime Performers

  • Charles River Analytics, Inc.
  • GE Global Research
  • Innovative Decisions, Inc.
  • Leidos, Inc.
  • Raytheon BBN Technologies
  • University of Central Florida