U.S. Customs and Border Protection Has Taken Steps To Address Insider Threat, but Challenges Remain (Redacted)

We reviewed the efforts of U.S. Customs and Border Protection (CBP) to address the risk posed by trusted insiders. Our objective was to assess CBP’s progress toward protecting its information technology assets from threats posed by its employees, especially those with trusted or elevated access to sensitive information systems or data. CBP has made progress in addressing the risk of insider threats across the organization. Specifically, CBP established a working group and a committee focused on the risk. Further, CBP researches employee behavior, conducts pre-employment screening including polygraph assessments, and participates in border corruption task forces with the Federal Bureau of Investigation.