‘Threat intelligence’ has become a general term that may refer to many different types of data sets used to meet very different security needs. Threat prevention and detection solutions (i.e. NGFW, SWG, EDR) are only as good as the threat intelligence driving their analytics. Threat investigation and incident response activities are limited and slow without timely access to sufficient event, network, and threat intelligence. This requires defenders to better understand their intelligence needs, how to identify and map appropriate threat feeds to each need, and the tools available to drive maximum value from threat intelligence.
Join Infoblox and (ISC)² on Dec 9, 2020 (Wed) at 10am (GMT +8), we will review the state of the threat intelligence industry, using public and private research from the last year on the quality and applicability of public, private, and proprietary feeds. We will demonstrate the current state of the market for applying threat intelligence to real-world problems, including:
- Automating multi-feed normalization into a ‘super-feed’ for a more effective defensive security stack
- Speeding investigation and response through event, metadata, and threat intelligence correlation
- Leveraging threat intelligence of threat actor objectives, methods, and tactics to drive quick incident resolution
Presenter: Bob Hansmann, Sr. Product Marketing Manager – Security, Infoblox
Moderator: Tony Vizza, CISSP, CCSP, Director of Cybersecurity Advocacy, APAC, (ISC)²