Tech Library is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.


Powering Incident Response by Operationalizing Threat Intelligence

Jan 08, 2020

Threat intelligence is the pathway that leads us to clear and actionable knowledge about malicious actors. The challenge with threat intelligence, however, is that while security teams have boundless access to both free and paid threat data feeds, they are often overwhelmed with information. The vast amount of data and alerts, combined with the resource shortage most face, makes it difficult to turn the data into intelligence that applies to the organization, and then translate that insight into actions that decrease the attack surface or address real, imminent threats.

More than half of organizations report a problematic shortage of cybersecurity skills. The industry's global skills gap is forecasted to result in a record high of 3.5 million unfilled positions by 2021. Hiring more people is currently not an option for teams who are inundated with security data, alerts and incidents. Rather, practioners need to operationalize threat intelligence, so they are empowered with better, faster, smarter ways to query, learn from and enrich threat data so it can be put into action.

This paper includes information surrounding:

• Situational analysis
• Extracting value from threat intelligence
• A real world look at operationalizing threat intelligence