Discussion
Before you begin: Make sure that you have read.
The CISO's office at your selected e-Commerce company (from Project 1) has invited you to present an analysis of how threat intelligence products and services obtained from external sources can be used to improve the company's risk management efforts.
Your presentation will be given as part of a panel discussion at the CISO's monthly meeting with executives and managers. The CISO sponsors these panels to help staff members learn more about cybersecurity products and services and the vendors from which these capabilities can be purchased.
To prepare for your presentation, you must write a 3 to 5 paragraph briefing statement in which you summarize your analysis. This will be reviewed by the CISO before you give your presentation. Your briefing statement must provide:
1. An introduction to the topic that provides a brief overview of threat intelligence in general (how the term is defined / used) and how it can be used to support the risk management process (e.g. risk identification, risk mitigation strategies, etc.)
2. Provide examples (backed up by citations to readings) of externally developed cyber threat intelligence which could be used to support the company's risk management efforts. You should consider cyberthreat intelligence services from both commercial providers and the ISAC cooperatives.
3. Provide a summary & conclusions section in which you state your opinion as to which providers would be the best sources of cyberthreat intelligence for the company.
The response should include a reference list. Double-space, using Times New Roman 12 pnt font, one-inch margins, and APA style of writing and citations.