A Better Way to Get Intelligent About Threats

Explore a comprehensive approach to threat intelligence in this 50-minute conference talk from BSidesLV 2014. Delve into problem-solving with data, automation for business roles, and the concept of a threat intelligence platform. Learn about making data more robust through communities and machine-readable threat intelligence. Examine security processes driven by intelligence analysis, including the Diamond Model and its various applications. Discover real-world use cases from defense contractors, government agencies, and Fortune 100 companies. Gain insights into collecting and fusing structured and unstructured information from diverse sources to enhance your organization's threat intelligence capabilities.

Intro
LARGEST TOILET PAPER ROLL!!
DO YOU KNOW?
PROBLEM SOLVING WITH DATA
I NEED WHAT? Collect & fuse structured and unstructured information from various
AUTOMATION FOR ALL ROLES OF BUSINESS
THREAT INTELLIGENCE PLATFORM Aggregate
MAKING YOUR DATA BIGGER Communities
MACHINE READABLE THREAT INTELLIGENCE
SECURITY PROCESSES DRIVEN BY INTELLIGENCE Analyze
DIAMOND MODEL
DIAMOND 101: EVENTS, EDGES, AND META FEATURES
DIAMOND 101: PIVOTING SCENARIO
DIAMOND 101: ACTIVITY THREADS
DIAMOND 101: EXTENDED DIAMOND
DEFENSE CONTRACTOR USE-CASE
GOVERNMENT USE-CASE
FORTUNE 100 USE-CASE