The required control of audit records and user accountability as outlined in NIST SP 800-171 Revision 2 are key requirements in fortifying an organization’s defense against cybersecurity-related threats.

Reporting insider threat activities can prevent serious harm or damage to the organization’s assets including information, people, and equipment. Reporting best practices include reporting to established personnel within the organization and not to the suspected individual

There are several approaches to limiting system access to devices by focusing on three main technologies: firewalls, network segmentation, and device security.