EclecticIQ - Building a threat intelligence driven cybersecurity practice
Cyber Threat Intelligence (CTI) is certainly not a new practice and has been around in the security industry for many years. Yet, organizations struggle to grasp what a CTI practice actually entails and how to get the most value out of it. Common questions include “What is threat intelligence? What do I need to execute and mature it well? And what technologies do I need to acquire?” The ambiguity around these questions leaves many people wondering “How on earth do I start a threat intel program?”
This presentation will answer above questions and provide an insight why Cyber Threat Intelligence is one of the most valuable and effective security practices an organization can implement and how to get started.
The presentation will also explain why organizations need to look beyond Indicators of Compromise (IOCs) and how knowledge of a threat actor’s modus operandi will empower them to anticipate and / or respond to attacks faster and more effectively.
The talk will close with an introduction to Structured Threat Information eXpression (STIX). STIX will aid intelligence analysts throughout the entire Threat Intelligence Lifecycle and enable security communities to share intelligence with one another in a consistent and machine readable (structured) way.
EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products that align our clients’ cybersecurity focus with their threat reality. And we tightly integrate our solutions with our customers’ IT security controls and systems. The result is intelligence-led security, improved detection, prevention, and response.
--- Datum: 10.10.2018 Uhrzeit: 11:40 Uhr - 12:00 Uhr Ort: Forum I10 - International