Add to my Schedule Auditorium
Oct 03, 2018 02:00 PM - 03:15 PM (UTC)
20181003T1400 20181003T1515 UTC Do you see threat intelligence as a "friend" or a "foe?" It is now becoming widely recognized that a mature threat intelligence program can greatly assist defenders in effectively deploying their precious and limited resources. However, creating and running... Auditorium Borderless Cyber USA / Washington D.C. / 3-5 October 2018 jharnad@oasis-open.org

It is now becoming widely recognized that a mature threat intelligence program can greatly assist defenders in effectively deploying their precious and limited resources. However, creating and running a mature threat intelligence program is simultaneously often seen as often expensive to run, difficult to properly operationalize, and full of false positives if a lot of time and care is not spent on curation. There is also pushback on how intelligence programs take resources from the "block and tackle" aspects of cybersecurity - ie, when 90% of breaches originate from a simple phish or social engineering, focusing on threat intelligence is a distraction.

How does the industry feel about the role of threat intelligence? This is your opportunity to ask those on the frontlines this important question. Several CTI experts have agreed to join us and share their views on the 'friend or foe' question. They'll also happy to answer other related CTI questions.   

 Ryusuke Masuoka
Fujitsu System Integration Laboratories
Research Principal
 Nicholas Hayden
Anomali
Sr. Director Threat Intelligence
Mr. Ryan Trost
ThreatQuotient
CTO and Co-Founder
 Mark Davidson
NC4
Development Manager
 Katie Kusjanovic
EclecticIQ
Senior Solutions Engineer
Mr. Jason Keirstead
IBM Security
Lead Architect
No slides to display.