In Module 6 we concern ourselves with the longer timeframes of Strategic Threat Intelligence (STI). These timeframes are longer than those of operational or tactical threat intelligence. This is due to the longer term objectives of STI, and as a result, the analyst's role is different in the STI domain. The analyst's role with respect to STI is focused on the long term defense of the organization. This requires a big picture view of the threat landscape, recent events such as changes in the business or the introduction of new technologies. The analyst is tasked with producing intel for use by senior management to guide strategic decision making. Threat modeling plays a prominent role in STI. It involves creating scenarios and brain-storming exercises in order to understand vulnerabilities that can be exploited. Dean concludes the video by presenting an overview of the NIST SP 800-30 document that covers threat response guidelines.
Intro to Cyber Threat Intelligence
The CTI course consists of 12 information-packed modules. CTI is a critical function within any organization that involves roles like analysts, methodologies, tools, teams, and policies. From threat analysis to the Cyber Kill Chain, learn it here.