A threat-informed defence strategy is a key attribute in organisations that can effectively prevent and respond to cyber incidents. An approach that models an adversary’s intent and capabilities, and one that can systematically contextualise that to their own organisation and assets clearly differentiates those that are cyber resilient from those that are not.

In this webinar recording, ServiceNow's Dr. James Blake, together with Recorded Future's Toby Wilmington, provide examples of how threat intelligence and analysis fusion delivers greater value than the sum of the parts. The ability to consume and contextualise incoming threat intelligence enriches the entire triage, investigatory, and response timeline — decreasing time-to-resolution, improving analyst efficiency, and lowering staff attrition.

The webinar explores three specific use cases:

  • How do you augment low-fidelity alerts from a SIEM platform into high-confidence alerts with enough context to be actionable?
  • How can you operationalise the monitoring of the dark web to discover undiscovered breaches involving your organisation?
  • Adversaries constantly innovate — how can we make our analysis playbooks agile to adapt to the latest changes in their behaviour?

You can unsubscribe from our communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.