Chapter 7

Fusing internal and external intelligence

Abstract

This chapter covers the fusing of internal and external intelligence to present a singular view of the threats an organization may face. Whether that singular view is presented through training or via threat intelligence specific protocols into a Threat Intelligence Management Platform or a Big Data solution, the goal is to make the view of internal and external data indistinguishable.

Keywords

Security awareness training

CyBOX

OpenIOC

STIX

TAXII

YARA

threat intelligence management platforms

Big Data Security Analytics

Hadoop

Information in this chapter

• Security awareness training

• OpenIOC, CyBOX, STIX, and TAXII

• Threat intelligence management platforms

• Big data security ...

Get Building an Intelligence-Led Security Program now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Building an Intelligence-Led Security Program by Allan Liska

Fusing internal and external intelligence

Abstract

Keywords

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly