Security threat intelligence is vital, but challenging to implement, says Joshua Goldfarb,chief security officer, enterprise forensics group, FireEye.
“The concept is simple, but it can be operationally difficult to do,” he told Computer Weekly.
The combined knowledge of many is always going to be more powerful than the knowledge of any single organisation, but there are challenges to realising the real benefits, said Goldfarb.
First, if an organisation is to benefit from intelligence about the types of activity it should be looking out for, that process has to be integrated into the security workflow.
“Security intelligence should never be isolated, but used to generate alerts that are fed into the security workflow like any other alerts,” said Goldfarb.
Second, security intelligence is a “predatory field”, and while there is a growing number of organisations that claim to provide security intelligence, not all these services are equal, he said.
According to Goldfarb, many simply provide “security information”. But that is not the same as “security intelligence”, which includes context of what that data means, what it relates to and how it can be used.
This article has been extracted from http://www.computerweekly.com, please click on this link to read the article in full http://www.computerweekly.com/news/2240223897/Integrating-intelligence-key-to-better-security-says-FireEye
Montash is a multi-award winning, global IT recruitment firm. Specialising in permanent and contract positions across mid-senior appointments which cover a wide range of industry sectors and IT functions, including:
ERP, BI & Data, Information Security, IT Architecture & Strategy, Scientific Technologies, Demand IT and Business Engagement, Digital and E-commerce, Infrastructure and Service Delivery, Project and Programme Delivery.
With offices based in London, Montash has completed assignments in over 30 countries and has appointed technical professionals from board level to senior and mid-management in permanent and contract roles.