Making Global Threat Intelligence Locally Actionable
When we talk about using the network to gather threat intelligence on a global basis, the question arises: how does someone apply that intelligence to protecting their local IT infrastructure? The key lies in maintaining a high degree of situational awareness. This begins with understanding what you are trying protect and what might interfere with it. From there, you can distinguish between relevant and irrelevant intelligence, and then act to protect the things that matter from the threats that could harm them. The get it, know it, do something about it cycle of global threat analysis is a two-way street. What you see and observe on a local level contributes to the global threat intelligence grid that, in turn, informs local security programs around the world. I have more to say about this in the video blog post below. I also welcome comments from viewers and look forward to hearing from you.