return to research

Threat Intelligence: React and Prepare

riskemerging threatsransomware
Threat Intelligence: React and prepare
Download the executive summary

The digital revolution presents opportunities to identify and exploit the rising value of information. But this same value also attracts unwanted attention and the risk from adversaries is increasing in magnitude and complexity. To manage this risk, organisations must build a realistic view of the threats they face – their capabilities, intentions and actions.

Threat intelligence can provide this view and organisations recognise it: 82% of ISF Members surveyed have already developed a threat intelligence capability while the remaining 18% plan to invest over the next twelve months. However, only 25% of survey respondents believe their threat intelligence capability is fully delivering the expected business aims. Respondents cited a variety of inhibitors including confusion over definitions, purchase or production costs and difficulties turning threat intelligence into action.

The ISF Approach for Managing a Threat Intelligence Capability equips organisations to build and manage a capability that delivers tangible value. It explains three key concepts of effective threat intelligence and how they can be achieved using the intelligence cycle. Requirements-driven and skilfully produced through analysis, threat intelligence harnesses the expertise and experience of others to provide insight into past, present and predicted attacks against an organisation. This insight informs security decision making, enabling organisations to act.