Applying Threat Intelligence Practically to Meet the Needs of an Evolving Regulatory Environment

Поделиться
HTML-код
  • Опубликовано: 3 окт 2024
  • Effective and operationalized threat intelligence is required now more than ever. Even as organizations around the world grapple with shifting market conditions, an increasingly complex regulatory environment is also emerging that will impact cybersecurity programs and processes across many sectors. More recent examples such as DORA and the September 2023 SEC ruling concerning material cyber incidents join established frameworks such as those from NIST and the UK's Cyber Assessment Framework (CAF). Threat intelligence can help organizations develop, prioritize, and action plans and strategies as part of threat and risk management, which ultimately informs these regulatory and compliance assessments. However, a universal threat intelligence methodology or crosswalk does not exist, challenging organizations and threat intelligence professionals with navigating multiple guidelines and standards for operationalizing threat intelligence to meet these expectations. We have approached this challenge by identifying common themes we see across security assessments around the world which intersect with or are dependent on threat intelligence. From these themes, we further identified methods and practices that have led to more operationalized threat intelligence within organizations, while considering varying levels of maturity and resource availability. Our presentation will provide attendees with examples for operationalizing threat intelligence in the context of common themes we see as part of these assessments. We further provide leading practices concerning how this information can be more broadly applied through the context of threat intelligence maturity. This includes how threat intelligence can be integrated within: Organizational strategies and charters; The development of priorities and requirements; Collection evaluation and management; Security operations playbooks; and, Threat modeling scenarios.
    View upcoming Summits: www.sans.org/u/DuS
    SANS Cyber Threat Intelligence Summit 2024
    Applying Threat Intelligence Practically to Meet the Needs of an Evolving Regulatory Environment
    Sierra Stanczyk, Manager, PwC Threat Intelligence
    Rachel Mullan, Director, PwC UK’s Cyber SecurityPractice, PwC
  • НаукаНаука

Комментарии •

Следующие
Автовоспроизведение
Intellimation: Guidance for Integrating Automation in Your Cyber Threat Intelligence Program40:39Intellimation: Guidance for Integrating Automation in Your Cyber Threat Intelligence Program
Intellimation: Guidance for Integrating Automation in Your Cyber Threat Intelligence ProgramSANS Digital Forensics and Incident Response
Просмотров 428
Beyond the Basics: The Role of LLM in Modern Threat Intelligence38:40Beyond the Basics: The Role of LLM in Modern Threat Intelligence
Beyond the Basics: The Role of LLM in Modern Threat IntelligenceSANS Digital Forensics and Incident Response
Просмотров 2,6 тыс.
Cybersecurity and Zero Trust17:59Cybersecurity and Zero Trust
Cybersecurity and Zero TrustIBM Technology
Просмотров 84 тыс.
BabyChiefDoit - Too Slow (feat. STAR BANDZ) [Official Music Video]02:33BabyChiefDoit - Too Slow (feat. STAR BANDZ) [Official Music Video]
BabyChiefDoit - Too Slow (feat. STAR BANDZ) [Official Music Video]BabyChiefDoit
Просмотров 157 тыс.
Here’s a walk-through of downtown Marshall, North Carolina just a few days after the major flooding18:40Here’s a walk-through of downtown Marshall, North Carolina just a few days after the major flooding
Here’s a walk-through of downtown Marshall, North Carolina just a few days after the major floodingHVAC TV
Просмотров 490 тыс.
The MLB Season Just Ended in the Dumbest Way Possible26:59The MLB Season Just Ended in the Dumbest Way Possible
The MLB Season Just Ended in the Dumbest Way PossibleBaseball Doesn't Exist
Просмотров 662 тыс.
INSIDE OFFLINETV’S L.A. MEGA MANSION38:46INSIDE OFFLINETV’S L.A. MEGA MANSION
INSIDE OFFLINETV’S L.A. MEGA MANSIONOfflineTV
Просмотров 1 млн
The Cycle of Cyber Threat Intelligence1:00:27The Cycle of Cyber Threat Intelligence
The Cycle of Cyber Threat IntelligenceSANS Digital Forensics and Incident Response
Просмотров 115 тыс.
How the Most Elite Spy Agency Operates22:42How the Most Elite Spy Agency Operates
How the Most Elite Spy Agency OperatesNewsthink
Просмотров 1,6 млн
Tactics of Physical Pen Testers44:17Tactics of Physical Pen Testers
Tactics of Physical Pen TestersfreeCodeCamp Talks
Просмотров 904 тыс.
Cheating or Learning? Walking the AI tightrope in education | Erik Winerö | TEDxGöteborg16:19Cheating or Learning? Walking the AI tightrope in education | Erik Winerö | TEDxGöteborg
Cheating or Learning? Walking the AI tightrope in education | Erik Winerö | TEDxGöteborgTEDx Talks
Просмотров 30 тыс.
HammerCon 2024: Cobalt Strike: Operational Security for Cyber Operators, Sean Phipps29:15HammerCon 2024: Cobalt Strike: Operational Security for Cyber Operators, Sean Phipps
HammerCon 2024: Cobalt Strike: Operational Security for Cyber Operators, Sean PhippsMilitary Cyber Professionals Association
Просмотров 999
Think Fast, Talk Smart: Communication Techniques58:20Think Fast, Talk Smart: Communication Techniques
Think Fast, Talk Smart: Communication TechniquesStanford Graduate School of Business
Просмотров 40 млн
Generative AI in Cybersecurity: Rise of the Machines?24:49Generative AI in Cybersecurity: Rise of the Machines?
Generative AI in Cybersecurity: Rise of the Machines?SANS Institute
Просмотров 13 тыс.
2024 Indiana CTSI Annual Meeting 07 Pangelinan38:342024 Indiana CTSI Annual Meeting 07 Pangelinan
2024 Indiana CTSI Annual Meeting 07 PangelinanIndiana CTSI
Просмотров 10
How AI Could Save (Not Destroy) Education | Sal Khan | TED15:37How AI Could Save (Not Destroy) Education | Sal Khan | TED
How AI Could Save (Not Destroy) Education | Sal Khan | TEDTED
Просмотров 1,5 млн
САМЫЙ ДОРОГОЙ Набор Геймера RAZER с DNS | Клавиатура, мышь, наушники, микрофон,стеклопад, колонки !25:04САМЫЙ ДОРОГОЙ Набор Геймера RAZER с DNS | Клавиатура, мышь, наушники, микрофон,стеклопад, колонки !
САМЫЙ ДОРОГОЙ Набор Геймера RAZER с DNS | Клавиатура, мышь, наушники, микрофон,стеклопад, колонки !FISPECKT
Просмотров 182 тыс.
iPhone 1600:20iPhone 16
iPhone 16Adhemz
Просмотров 13 млн
Выключенный ПК потребляет электроэнергию?00:30Выключенный ПК потребляет электроэнергию?
Выключенный ПК потребляет электроэнергию?CONSTRUCT PC
Просмотров 606 тыс.
Этот чехол НЕ ЗАЩИТИТ твой телефон #shorts #шортс #смартфон #факты #чехол00:45Этот чехол НЕ ЗАЩИТИТ твой телефон #shorts #шортс #смартфон #факты #чехол
Этот чехол НЕ ЗАЩИТИТ твой телефон #shorts #шортс #смартфон #факты #чехолThis is Хорошо
Просмотров 4,7 млн
НЕДЕЛЯ с vivo X100 Ultra - кто сказал что у ЛУЧШИХ нет ПРОБЛЕМ? | ЧЕСТНЫЙ ОТЗЫВ25:12НЕДЕЛЯ с vivo X100 Ultra — кто сказал что у ЛУЧШИХ нет ПРОБЛЕМ? | ЧЕСТНЫЙ ОТЗЫВ
НЕДЕЛЯ с vivo X100 Ultra - кто сказал что у ЛУЧШИХ нет ПРОБЛЕМ? | ЧЕСТНЫЙ ОТЗЫВПавел Хмурчик
Просмотров 56 тыс.
Visionox's screen display actually uses a wraparound screen concept phone. Tri-fold has come out00:10Visionox's screen display actually uses a wraparound screen concept phone. Tri-fold has come out
Visionox's screen display actually uses a wraparound screen concept phone. Tri-fold has come outSam Guru
Просмотров 2 млн
Какую Windows выбирает CompShop? #windows #ос #сборкапк00:57Какую Windows выбирает CompShop? #windows #ос #сборкапк
Какую Windows выбирает CompShop? #windows #ос #сборкапкCompShop Shorts
Просмотров 496 тыс.
Look at my 3D stereo projector, with a built-in sound response card, to experience big-screen viewin00:15Look at my 3D stereo projector, with a built-in sound response card, to experience big-screen viewin
Look at my 3D stereo projector, with a built-in sound response card, to experience big-screen viewinYao Zong
Просмотров 14 млн