Did you know Cybrary's video training is FREE? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.
Analysts in an organization play vital roles in CTI. Their number and specific duties will vary depending on an organization's size, but their fundamental responsibility is to identify actionable threats and communicate them to interested stakeholders. Activities of CTI analysts fall into fall into strategic and tactical functions. We'll cover each in later modules. For now, it's important to understand that analysts are tasked with detecting, analyzing, and responding to threats. The analysis step is critical for warding off false positives. An important part of the analysis step is compiling indicators of compromise or IOCs. A baseline of activity and metrics is developed beforehand which is then applied to any events that raise suspicion. This consists of unusual outbound traffic, anomalies in privileged user account activity, unusual occurrence of encrypted traffic among other indicators.
Module 1 - Introduction
Module 2 - Intelligence Foundations
Module 3 - CTI Perceptions
Module 4 - Tactical Threat Intelligence
Module 5 - Operational Threat Intelligence
Module 6 - Strategic Threat Intelligence
Module 7 - The Cyber Kill Chain
Module 8 - Tactical Threat Intelligence Requirements
Module 9 - Cyber Kill Chain Analysis
Module 10 - Cyber Kill Chain Management
Module 11 - Using Open Source Intelligence
Module 12 - Summary
Subscribe to become an Insider Pro and get access to premium content such as: