Chapter 7

Fusing internal and external intelligence

Abstract

This chapter covers the fusing of internal and external intelligence to present a singular view of the threats an organization may face. Whether that singular view is presented through training or via threat intelligence specific protocols into a Threat Intelligence Management Platform or a Big Data solution, the goal is to make the view of internal and external data indistinguishable.

Keywords

Security awareness training
CyBOX
OpenIOC
STIX
TAXII
YARA
threat intelligence management platforms
Big Data Security Analytics
Hadoop
Information in this chapter
Security awareness training
OpenIOC, CyBOX, STIX, and TAXII
Threat intelligence management platforms
Big data security ...

Get Building an Intelligence-Led Security Program now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.