Understanding Threat Intelligence for Effective Risk Management

Slide Note
Embed
Share

Explore the world of threat intelligence and its critical role in managing risks effectively. From distinguishing information vs. intelligence to analyzing TTPs in digital environments, this comprehensive overview covers key concepts, tools, and techniques essential for businesses to stay ahead of evolving threats.

zaina
zaina Follow

Uploaded on Jul 30, 2024 | 2 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Threat Intelligence Threat Intelligence A quick glace at Intelligence Led Risk Management

  2. A brief history of me A brief history of me Former Child Former Military Police NCO Former Military Intelligence NCO Former Bus Driver got into InfoSec 5 years ago Worked for DXC on the MoD Contract Worked at Auriga Consulting on the Nuclear Decommissioning Authority contract Worked at Virgin Money in 2ndLine Risk Currently working for Infinium as an IT Security Specialist RNLI volunteer All round good egg

  3. Agenda Agenda What is Threat intelligence Information, Misinformation, Intelligence and Actionable Intelligence What's the difference between information and intelligence What does threat intelligence mean to business? Threat Intelligence & Risk Management Techniques, tactics and procedures (TTPs) Symmetric TTPs in digital business Asymmetric TTPs in digital business Application of Intelligence led risk management in digital business Conclusions Questions

  4. Threat Intelligence Utilisation Threat Intelligence Utilisation

  5. What is Threat Intelligence? What is Threat Intelligence? Threat intelligence is inferred, evidence-based knowledge including context, mechanisms, indicators, implications and actionable advice about an existing or emerging threat or hazard to assets. It can be used to inform decisions regarding the subject's deployment of countermeasures or response to that hazard or threat or target adversarial assets. If its Done Well!

  6. Intelligence Terminology Intelligence Terminology Information Misinformation Intelligence Actionable Intelligence

  7. Information vs Intelligence Information vs Intelligence

  8. Intelligence Tools Intelligence Tools Intelligence Collection Plans PoL Analysis Link Analysis F3EA Money Tracing OSINT Tools Forming a working Hypothesis Murder groups (its not what you think)

  9. Intelligence Products Intelligence Products

  10. Threat Intelligence in the Business World Threat Intelligence in the Business World Threat Intelligence will identify, categorise and draw recommendations in relation to threats from a number of malicious sources A robust business threat intelligence program, done well, will assist with strategic decisions affecting any number of business critical processes

  11. Threat Intelligence in Risk Management Threat Intelligence in Risk Management Ad Hoc Threat Based Formal Risk Management Frameworks Intelligence Led .?

  12. Intelligence Led Risk Management Intelligence Led Risk Management

  13. Tactics, Techniques & Procedures Tactics, Techniques & Procedures What we dislike How we carry out actions How we think What we like Routes we take Language we use Places we go to TTPs Our Ideology Places we avoid Things we admire People we avoid People we interact with Things we eat Things we wear Our Ideals Our Loyalties

  14. Symmetric TTPs Symmetric TTPs Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Malicious Actor Environment Supported Live Environment Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector

  15. Asymmetric TTPs Asymmetric TTPs Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Malicious Actor Environment Supported Live Environment Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Offensive Capability or Toolset Ineffective Control or Countermeasure Attack Vector Compromise of Environment Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector Offensive Capability or Toolset Defensive Control or Countermeasure Attack Vector

  16. Deploy countermeasures Apply Intelligence Process Understand your defensive capabilities Understand your Vulnerabilities Know your Foe Understand your infrastructure Protect

  17. Conclusions Conclusions Threat intelligence should be at the forefront of everything we do Threat Intelligence is the processing of information into actionable intelligence Intelligence Led Risk Management can save significant sums of money by applying budget only where it is required The key to effective threat intelligence is understanding our estate, vulnerabilities, adversaries and countermeasures Understanding adversarial asymmetric TTPs is vital to understanding which exploits pose most the significant risk Intelligence Led Risk management could be the single most effective means of managing risk to any organisation .. If its done well!

  18. Questions? Questions? The Fewer you ask, the quicker we re in the pub The Fewer you ask, the quicker we re in the pub .. # .. #justsayin justsayin

Related


Enhancing Incident Response Through Threat Intelligence

Enhancing Incident Response Through Threat Intelligence

jahziah
Understanding Risk Management in Environmental Geography and Disaster Management

Understanding Risk Management in Environmental Geography and Disaster Management

duke
Overview of Intelligence Testing in Psychology: Insights and Perspectives

Overview of Intelligence Testing in Psychology: Insights and Perspectives

suri
Cyber Threat Detection and Network Security Strategies

Cyber Threat Detection and Network Security Strategies

lilliemae
Modern Threat Modeling & Cloud Systems in OWASP Sacramento

Modern Threat Modeling & Cloud Systems in OWASP Sacramento

maven
Understanding Intelligence: Theories and Types Explored

Understanding Intelligence: Theories and Types Explored

lynette
Understanding Artificial Intelligence and Intelligence in Computers

Understanding Artificial Intelligence and Intelligence in Computers

asa
Project Risk Management Fundamentals: A Comprehensive Overview

Project Risk Management Fundamentals: A Comprehensive Overview

franky
Insights into Theories and Definitions of Intelligence

Insights into Theories and Definitions of Intelligence

olaf
Comprehensive Overview of Security Risk Analysis and Management

Comprehensive Overview of Security Risk Analysis and Management

toula
Understanding Cyber Threat Assessment and DBT Methodologies

Understanding Cyber Threat Assessment and DBT Methodologies

jgra
Cybersecurity and Supply Chain Risk Management Best Practices

Cybersecurity and Supply Chain Risk Management Best Practices

crew
Risk Management Strategies in Organizational Security

Risk Management Strategies in Organizational Security

lillymai
Understanding Intelligence Reporting and Assessment in Policing

Understanding Intelligence Reporting and Assessment in Policing

jewel
Understanding Intelligence: IQ and Emotional Intelligence in Education

Understanding Intelligence: IQ and Emotional Intelligence in Education

meghan
Theories of Intelligence: Monarchie vs. Spearman's Two-Factor Theory

Theories of Intelligence: Monarchie vs. Spearman's Two-Factor Theory

celine
Principles of Risk Management in Therapeutic Innovation

Principles of Risk Management in Therapeutic Innovation

luqman
Artificial Intelligence in Cyber Security: Enhancing Threat Detection and Response

Artificial Intelligence in Cyber Security: Enhancing Threat Detection and Response

annabelle
Comprehensive Guide to Penetration Testing Execution Standard (PTES)

Comprehensive Guide to Penetration Testing Execution Standard (PTES)

remus
Understanding Stereotype Threat and Teacher Response in Education

Understanding Stereotype Threat and Teacher Response in Education

thea
Understanding Emotional Intelligence: Key Principles and Skills

Understanding Emotional Intelligence: Key Principles and Skills

wesson
Challenges in Computer Systems Security

Challenges in Computer Systems Security

nakot
Reforming Intelligence Laws for Effective Oversight and Accountability

Reforming Intelligence Laws for Effective Oversight and Accountability

pepper
Understanding Artificial Intelligence: A Comprehensive Overview

Understanding Artificial Intelligence: A Comprehensive Overview

giovanna

More Related Content

Introduction to Flood Risk Assessment with HEC-FDA Overview
Introduction to Flood Risk Assessment with HEC-FDA Overview
Understanding Country Risk Analysis in International Business
Understanding Country Risk Analysis in International Business
The Actuarial Association of Europe and Its Risk Management Committee
The Actuarial Association of Europe and Its Risk Management Committee
The Persistent Threat of Puritan Beliefs to Elizabeth's Reign
The Persistent Threat of Puritan Beliefs to Elizabeth's Reign
Behavioral Threat Assessment Tabletop Exercise - College First Year Analysis
Behavioral Threat Assessment Tabletop Exercise - College First Year Analysis
Understanding Agricultural Risk Management in the Face of Natural Disasters
Understanding Agricultural Risk Management in the Face of Natural Disasters
Understanding Intelligence and Intelligence Testing: A Psychological Perspective
Understanding Intelligence and Intelligence Testing: A Psychological Perspective
Operational Risk Assessment for Major Accident Control: Insights from IChemE Hazards 33 Conference
Operational Risk Assessment for Major Accident Control: Insights from IChemE Hazards 33 Conference
Understanding Emotional Intelligence in the Workplace
Understanding Emotional Intelligence in the Workplace
Enhancing Zoonotic Disease Risk Communication in Public Health Emergencies
Enhancing Zoonotic Disease Risk Communication in Public Health Emergencies
Understanding Microsoft Sentinel Fusion for Advanced Threat Detection
Understanding Microsoft Sentinel Fusion for Advanced Threat Detection
Fundamentals of Portfolio Management and Risk Aversion in Investing
Fundamentals of Portfolio Management and Risk Aversion in Investing
Insights on Enterprise Risk Management in the Non-Life Insurance Sector
Insights on Enterprise Risk Management in the Non-Life Insurance Sector
Comprehensive Overview of Market Risk Management Framework in Financial Institutions
Comprehensive Overview of Market Risk Management Framework in Financial Institutions
Understanding Probabilistic Risk Analysis: Assessing Risk and Uncertainties
Understanding Probabilistic Risk Analysis: Assessing Risk and Uncertainties
Pennsylvania Risk Assessment: A Comprehensive Overview
Pennsylvania Risk Assessment: A Comprehensive Overview
Comprehensive Soft Skills & Emotional Intelligence Training for Police Officers
Comprehensive Soft Skills & Emotional Intelligence Training for Police Officers
Addressing The Quantum Threat: The Quantum Resistant Ledger
Addressing The Quantum Threat: The Quantum Resistant Ledger
Cyber Threat to Nuclear Facilities: A Critical Analysis
Cyber Threat to Nuclear Facilities: A Critical Analysis
Exploring the Malicious Use of Artificial Intelligence and its Security Risks
Exploring the Malicious Use of Artificial Intelligence and its Security Risks
Falls Risk Assessment and Management Plan (FRAMP) Process Overview
Falls Risk Assessment and Management Plan (FRAMP) Process Overview
Stakeholders Networking for Multi-Risk and Climate Resilient Disaster Management in Slovakia
Stakeholders Networking for Multi-Risk and Climate Resilient Disaster Management in Slovakia
Understanding Market Risk and Risk Management Techniques
Understanding Market Risk and Risk Management Techniques
Understanding Risk Management and Insurance in Economic Context
Understanding Risk Management and Insurance in Economic Context