WK5 Discussion CSIA
Before you begin: please make sure that you have read the readings for this week.
The CISO’s office at your selected e-Commerce company (from Project 1) has invited you to present an analysis of how threat intelligence products and services obtained from external sources can be used to improve the company’s risk management efforts. Your presentation will be given as part of a panel discussion at the CISO’s monthly meeting with executives and managers. The CISO sponsors these panels to help staff members learn more about cybersecurity products and services and the vendors from which these capabilities can be purchased. To prepare for your presentation, you must write a 3 to 5 paragraph briefing statement in which you summarize your analysis. This will be reviewed by the CISO before you give your presentation. Your briefing statement must provide: 1. An introduction to the topic that provides a brief overview of threat intelligence in general (how the term is defined / used) and how it can be used to support the risk management process (e.g. risk identification, risk mitigation strategies, etc.) 2. Provide examples (backed up by citations to readings) of externally developed cyber threat intelligence which could be used to support the company’s risk management efforts. You should consider cyberthreat intelligence services from both commercial providers and the ISAC cooperatives. 3. Provide a summary & conclusions section in which you state your opinion as to which providers would be the best sources of cyberthreat intelligence for the company. Post your briefing statement as a reply to this topic. Provide in-text citations and references for 3 or more authoritative sources. Put the reference list at the end of your posting.