What are your preferred sources for threat intelligence?

1.7k views15 Comments

Sort by:

CISO in Services (non-Government)3 years ago

Threat intelligence has become critical and important for preventing attacks. Organisation needs Threat intelligence that may impacting them and must be easily usable. Threat intelligence is best used by a prevention and detection system. Vendor TI feed is a must. We used CrowdStrike EDR, Spotlight and Falcon X, together with a IR retained. The SIEM system was integrated with all the Threat Intelligence built in the system. We then integrated our prevention and detection system with open source Threat Intelligence sources, Government, CISA/CERT, ISAC, OpenCTI, etc.

A combination of commercial, open-source, and vendor threat feeds provided the greatest benefit with the least amount of overlap when utilizing threat intelligence from multiple sources. One have to consider the different open source threat intelligence standards that are evolving

Director of Information Security Operations in Consumer Goods3 years ago

My current mssp threat hunting sources, and any open source available

Director, Infrastructure, Operations & Security in Consumer Goods3 years ago

Mandiant, Proofpoint

Chief Information Security Officer in Finance (non-banking)3 years ago

Open Threat Exchange, CISA, SANS

Director in Construction3 years ago

We don't have any paid sources. Primary source is our ISAC, with secondaries being SANS, CISA.

Content you might like

Which cybersecurity metrics do you currently use with your board?

What do you do to recover quickly from early missteps in a new role? How can you keep initial mistakes from coloring perceptions when you’re still trying to establish your reputation at a new organization?

On a scale of 1-5, how would you rate your organization’s ability to successfully protect your organization's operational network (OT) and IT network from a cyber attack?

1. We are not at all prepared.3%

2. We are somewhat prepared.35%

3. We are moderately prepared.21%

4. We are generally prepared.33%

5. We are highly prepared.6%

View Results

Based on your past experiences with starting a new position, what sorts of quick wins tend to have the greatest impact in terms of building up your credibility with stakeholders?

As an IT executive, how much would you like to invest in early-stage startups per year?

$10k - $50k32%

$50k - $100k49%

$100k+9%

No thanks, I'm killing it in the stock market8%

View Results

What are your preferred sources for threat intelligence?

Sort by:

Content you might like

Which cybersecurity metrics do you currently use with your board?

What do you do to recover quickly from early missteps in a new role? How can you keep initial mistakes from coloring perceptions when you’re still trying to establish your reputation at a new organization?

On a scale of 1-5, how would you rate your organization’s ability to successfully protect your organization's operational network (OT) and IT network from a cyber attack?

Based on your past experiences with starting a new position, what sorts of quick wins tend to have the greatest impact in terms of building up your credibility with stakeholders?

As an IT executive, how much would you like to invest in early-stage startups per year?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go