Peer-Driven Insights

Threat Intelligence & Incident Response

About this topic

Threat intelligence and incident response refers to the collection, analysis, and use of threat data to anticipate and respond to security incidents. These practices enable timely risk mitigation and strengthen organizational resilience.

Featured One-Minute Insights

Sept 2024

How are U.S. CISOs Addressing Liability Risk?

New regulations taking effect in the U.S. mean that cybersecurity leaders could face legal liability in the event of an incident. What strategies are they using to protect themselves?

Active Ambassadors in This Topic

Rathik Pathak

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

India

View All Community Ambassadors

Community Posts

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

Read More Comments

Have you considered managed services to outsource detection and response capabilities at your organization?

Yes70%

No28%

Unsure1%

View Results

Should there be federal ordinances in place for cybersecurity threats where the affected organization is billed for the shutdown?

Read More Comments

Are you using a SIEM product? If yes, which one and what has been your experience so far w.r.t
1. Implementation
2. Effectiveness
3. TCO

Read More Comments

Do you feel your organization is at risk for suffering a material cyber attack in 2021?

Yes58%

No33%

Unsure8%

View Results

How do we include the supply chain risk landscape in our daily risk assessments?

Read More Comments

It's been announced that Windows 11 will be serviced on a monthly basis, similar to Windows 10's infamous "Patch Tuesdays". What's the ideal service cadence for this OS?

Updates should be released daily.11%

Updates should be released weekly57%

Updates should stay monthly.24%

Updates should be pushed quarterly.6%

Other (comment below)

View Results

When we talk about supply chain risk today, are we really talking about third-party risk?

Read More Comments

Why does DNS security feel like a never-ending story?

Read More Comments

Was the FBI action on Microsoft exchange servers justified in your opinion?

Read More Comments

If there is significant malicious activity occurring on private networks, does the government have an obligation to intervene?

Read More Comments

Would you ever be comfortable with the government taking a direct action to address vulnerabilities in your networks?

Read More Comments

About this topic

Featured One-Minute Insights

How are U.S. CISOs Addressing Liability Risk?

Active Ambassadors in This Topic

Rathik Pathak

Community Posts

Australia's government is considering a ban on ransomware payments — do you think that could be effective? Why or why not?

Have you considered managed services to outsource detection and response capabilities at your organization?

Should there be federal ordinances in place for cybersecurity threats where the affected organization is billed for the shutdown?

Are you using a SIEM product? If yes, which one and what has been your experience so far w.r.t 1. Implementation2. Effectiveness3. TCO

Do you feel your organization is at risk for suffering a material cyber attack in 2021?

How are you approaching security challenges in the healthcare space?

Will SolarWinds recover from this breach?

What’s the best way to describe security risks in terms of business impact?

What is the most overlooked step in a cybersecurity plan?

How do we include the supply chain risk landscape in our daily risk assessments?

It's been announced that Windows 11 will be serviced on a monthly basis, similar to Windows 10's infamous "Patch Tuesdays". What's the ideal service cadence for this OS?

When we talk about supply chain risk today, are we really talking about third-party risk?

Why does DNS security feel like a never-ending story?

Was the FBI action on Microsoft exchange servers justified in your opinion?

If there is significant malicious activity occurring on private networks, does the government have an obligation to intervene?

Would you ever be comfortable with the government taking a direct action to address vulnerabilities in your networks?

Are you using a SIEM product? If yes, which one and what has been your experience so far w.r.t
1. Implementation
2. Effectiveness
3. TCO