Tom Topping, senior director of strategic programs at FireEye (Nasdaq: FEYE), has said threat intelligence and continuous visibility into their networks could allow agencies to focus their efforts and resources on adversaries that are most likely to attack them.
Cyberthreat intelligence can be used to catch adversaries that have slipped past the agencys defenses, Topping wrote. In other words, the cybersecurity team should be hunting inside their network for the indicators left behind by their most likely attackers.
He noted that threat intelligence could help agencies identify critical vulnerabilities that require immediate patching and facilitate communications between their security teams and top leaders.
Thats vitally important because it helps leaders make better risk-based decisions. It also helps those leaders understand how various investments contribute to the organizations overall risk profile, he added.
Roy also mentioned security instrumentation platforms and how such tools provide organizations continuous insight and help validate whether security controls are running as expected.