Bonaparte advised, "Compare with what's going on in your enterprise and communities of interest. Take advantage of knowledge in vertical communities and supply chains and access what's going on behind the scenes to identify the relevant data to your context and environment."
Knowledge is power is not a hackneyed expression that should be ignored when looking at threat intelligence. Milbourne said, "The more they are aware, they more likely they are not to fall victim. Security awareness is often more cost effective, and it's a fundamental part of security intelligence."
What's most important for all enterprises is to be aware of what matters to their own environments. Sharing threat intelligence information is helpful in identifying known risks, but Milbourne said, "We need to be looking at how often these threats are encountered in the world. Eighty percent of threats aren't even prevalent anymore." Educating themselves about the services available and having a tailored threat intelligence program specific to the needs of their environments will help.
As more industries identify more needs, threat intelligence will continue to grow and evolve to meet the needs of enterprises. Ryan Trost, managing principal, ThreatQuotient said, "Threat Intelligence needs to cater to the masses, which it doesn't right now. Enterprises need sources, and once they have sources, they need a platform to store and manage their data."
If enterprises are shopping around for vendors, scoring is a tool that will personalize the platform. Trost said, "Moving forward, scoring will be critical. It should be from a customer centric perspective, not an embedded intelligence score."
Sign up for MIS Asia eNewsletters.