§ 2225. Insider threat detection
546 words·~2 min read·
/usc/title-10/section-2225A research copy — for the controlling text, always check the official state or federal source. Not legal advice.
(a)Program Required.— The Secretary of Defense shall establish a program for information sharing protection and insider threat mitigation for the information systems of the Department of Defense to detect unauthorized access to, use of, or transmission of classified or controlled unclassified information.
(b)Elements.— The program established under subsection
(a)shall include the following:
(1)Technology solutions for deployment within the Department of Defense that allow for centralized monitoring and detection of unauthorized activities, including—
(A)monitoring the use of external ports and read and write capability controls;
(B)disabling the removable media ports of computers physically or electronically;
(C)electronic auditing and reporting of unusual and unauthorized user activities;
(D)using data-loss prevention and data-rights management technology to prevent the unauthorized export of information from a network or to render such information unusable in the event of the unauthorized export of such information;
(E)a roles-based access certification system;
(F)cross-domain guards for transfers of information between different networks; and
(G)patch management for software and security updates.
(2)Policies and procedures to support such program, including special consideration for policies and procedures related to international and interagency partners and activities in support of ongoing operations in areas of hostilities.
(3)A governance structure and process that integrates information security and sharing technologies with the policies and procedures referred to in paragraph (2). Such structure and process shall include—
(A)coordination with the existing security clearance and suitability review process;
(B)coordination of existing anomaly detection techniques, including those used in counterintelligence investigation or personnel screening activities; and
(C)updating and expediting of the classification review and marking process.
(4)A continuing analysis of—
(A)gaps in security measures under the program; and
(B)technology, policies, and processes needed to increase the capability of the program beyond the initially established full operating capability to address such gaps.
(5)A baseline analysis framework that includes measures of performance and effectiveness.
(6)A plan for how to ensure related security measures are put in place for other departments or agencies with access to Department of Defense networks.
(7)A plan for enforcement to ensure that the program is being applied and implemented on a uniform and consistent basis.
(Added Pub. L. 119–60, div. A, title XVI, § 1623(a), Dec. 18, 2025, 139 Stat. 1183.)
Connections30 cite this · traces to 2
Cited by 30 sections · top 25
public-private-law
- Public Law 114-328National Defense Authorization Act for Fiscal Year 2017
- Public Law 113-291Carl Levin and Howard P. ‘Buck’ McKeon National Defense Authorization Act for Fiscal Year 2015
- Public Law 114-92National Defense Authorization Act for Fiscal Year 2016
- Public Law 113-66National Defense Authorization Act for Fiscal Year 2014
U.S. Code
statutes-at-large
- Public Law 111–383To authorize appropriations for fiscal year 2011 for military activities of the Department of Defense, for military construction, and for defense activities of the Department of Energy, to prescribe military personnel strengths for such fiscal year, and for other purposes
- Public Law 112–239To authorize appropriations for fiscal year 2013 for military activities of the Department of Defense, for military construction, and for defense activities of the Department of Energy, to prescribe military personnel strengths for such fiscal year, and for other purposes
- Public Law 113–66To authorize appropriations for fiscal year 2014 for military activities of the Department of Defense, for military construction, and for defense activities of the Department of Energy, to prescribe military personnel strengths for such fiscal year, and for other purposes
- Public Law 111–84To authorize appropriations for fiscal year 2010 for military activities of the Department of Defense, for military construction, and for defense activities of the Department of Energy, to prescribe military personnel strengths for such fiscal year, and for other purposes
- Public Law 114–92To authorize appropriations for fiscal year 2016 for military activities of the Department of Defense, for military construction, and for defense activities of the Department of Energy, to prescribe military personnel strengths for such fiscal year, and for other purposes
- Public Law 114–328To authorize appropriations for fiscal year 2017 for military activities of the Department of Defense, for military construction, and for defense activities of the Department of Energy, to prescribe military personnel strengths for such fiscal year, and for other purposes
- Public Law 110–181To provide for the enactment of the National Defense Authorization Act for Fiscal Year 2008, as previously enrolled, with certain modifications to address the foreign sovereign immunities provisions of title 28, United States Code, with respect to the attachment of property in certain judgments agai
statute-compilations
bill
- Sec. 931Modification of requirement for inventory of Department of Defense tactical data link systems
- Sec. 931Modification of requirement for inventory of Department of Defense tactical data link systems
- Sec. 931Modification of requirement for inventory of Department of Defense tactical data link systems
- Sec. 931Modification of requirement for inventory of Department of Defense tactical data link systems
- Sec. 931Modification of requirement for inventory of Department of Defense tactical data link systems
- Sec. 804Report on implementation of acquisition process for information technology systems
- Sec. 804Report on implementation of acquisition process for information technology systems
- Sec. 805Report on implementation of acquisition process for information technology systems
- Sec. 833Sunset and repeal of certain contracting provisions
Traces to 2 documents
15 references not yet in our index
- Pub. L. 119–60, div. A, title XVI, § 1623(a)
- 139 Stat. 1183
- Pub. L. 119–60
- section 922 of Pub. L. 112–81
- 125 Stat. 1537
- Pub. L. 119–60, div. A, title XVI, § 1623(b)
- Pub. L. 106–398, § 1 [[div. A]
- 114 Stat. 1654
- Pub. L. 108–178, § 4(b)(2)
- 117 Stat. 2640
- Pub. L. 109–364, div. A, title X, § 1071(a)(2)
- 120 Stat. 2398
- Pub. L. 111–350, § 5(b)(6)
- 124 Stat. 3842
- 130 Stat. 2284
Citation graph
cites case law
§ 2225
Insider threat detection
Bills×9
Stat.×9
Pub. L.×5
Stat. Comp.×4
U.S.C.×3
Pub. L.Pub. L. 119–60, div. A, title XVI, § 1623(a)
Stat.139 Stat. 1183
Pub. L.Pub. L. 119–60
Pub. L.section 922 of Pub. L. 112–81
Stat.125 Stat. 1537
Cites 17 · showing 7Cited by 30 across 5 sources