Which activity must cleared companies report to the FBI and DCSA?

Cleared companies are required to report possible insider threats to the FBI and Defense Counterintelligence and Security Agency (DCSA) as a part of their obligation to ensure national security and protect sensitive information. Insider threats can originate from individuals within the organization who have access to classified information and may potentially exploit this access for malicious purposes. Identifying and reporting these threats proactively helps mitigate risks and strengthens the overall security posture of the organization and the defense community.

While reporting potential data breaches, suspicious financial transactions, or personal grievances of employees might be important for different reasons, they do not hold the same priority concerning national security obligations that insider threats do. The focus on insider threats reflects the significant risk they pose to the integrity and confidentiality of classified information, which is a core concern for both the FBI and DCSA. This mechanism facilitates timely intervention to prevent potential harm before it takes place.