Cyber Challenges Today & Tomorrow

Cyber Threat Intelligence - What this is and why it Matters?

The recent alleged hack of the US democratic party servers is an example of the challenges faced today. Statistics show that, on the average the time between an organization’s IT systems being infiltrated and them becoming aware of this is 200 days. Shared threat intelligence provides the potential for organizations to reduce this gap.

Cyber criminals are constantly evolving the tools, techniques and processes (TTPs) that they use to attack their victims. They exploit a highly evolved commercial ecosystem to share existing TTPs as well as new, previously unused ones. In order to respond effectively to these emerging threats, it is vital that potential victims have the ability to share and exploit intelligence on these new threats.

Attend this session to learn about:

• What is treat intelligence and why it is needed.
• Barriers to sharing threat intelligence
• How threat intelligence is being used in practice
• Emerging standards to improve the sharing of Threat Intelligence

Presentation deck

Cyber Threat Intelligence - What this is and why it Matters?

Click here to download the slide deck. Please note that downloads are only available for event participants and subscribers. You'll need to log in to download it.

STIX/TAXII and its Impact on Threat management

Following up on the Cyber Threat Intelligence keynote on Tuesday, ‘Let Them Chase Our Robots – How Cyber Threat Intelligence Can Change the Economics of Cybersecurity,’ Richard Struse - Chief Advanced Technology Officer of the US Department of Homeland Security and chair of the OASIS Cyber Threat Intelligence Technical Committee (TC), will introduce the conference attendees to the work of the OASIS Cyber Threat Intelligence (CTI) TC.

Members of the CTI TC include representatives from the financial sector, healthcare and utility industry, software providers, government and academia, these members collaboratively develop the STIX and TAXII specifications as the solid foundation for standardizing threat information.

What will be discussed:

• STIX/TAXII overview
• Future directions of the specs - STIX/TAXII 2.0 have been defined as the solid foundation for future growth, the group continually evaluates new capabilities that will help address key use-cases.
• Real world implementations -- Industry experts share their experiences using STIX/TAXII to accelerate threat response.
• Open discussion related to threat intelligence sharing, incident response and risk, time permitting.

We invite cybersecurity experts and decision makers to come and be part of this exciting international effort.