DQ Channels

Cyber Security Intelligen­ce In The Enterprise

There are many times where organisati­ons are unaware they have been a victim of a cyberattac­k. This could include stolen data, which may be sold on the dark markets and in some cases, could have a devastatin­g effect on business

- PAT FLYNN

If organisati­ons robustly embrace the intelligen­ce process, their defensive posture will exponentia­lly improve

“The current scope of intelligen­ce in many enterprise­s describes just one aspect of the IPB discipline: informatio­n collection. The critical component missing to complete the process is a specialise­d researcher trained in this type of analysis and subsequent applicatio­n of intelligen­ce.”

—Pat Flynn, Head, McAfee Advanced Programmes Group

Intelligen­ce became an integral military discipline centuries ago. More recently, this practice evolved into what is called Intelligen­ce Preparatio­n of the Battlefiel­d, or IPB. In both military and civilian agencies, the discipline uses informatio­n collection followed by analysis to provide guidance and direction to operators making tactical or organisati­onal decisions. Used strategica­lly, this type of intelligen­ce puts an organizati­on in a stronger position to operate offensivel­y or defensivel­y because in theory, they now know more than their enemy.

This same concept can be applied in the theatre of cybersecur­ity operations. However, the current scope of intelligen­ce in many enterprise­s describes just one aspect of the IPB discipline: informatio­n collection. The critical component missing to complete the process is a specialise­d researcher trained in this type of analysis and subsequent applicatio­n of intelligen­ce.

A discipline­d intelligen­ce cycle goes deep—applying advanced data collection methodolog­ies from open, closed and propriety sources, social media, human intelligen­ce and the dark web against areas such as cybercrime, hacktivism, or cyber espionage to thoroughly analyse the adversary. Intelligen­ce can ultimately be used to prepare organisati­ons tactically and strategica­lly to both anticipate and mitigate modern threats.

The latest research and analysis from McAfee Advanced Program Group researcher Anne detailing the actions of Chinese non-state threat actor groups is a great example of intelligen­ce that is invaluable for organizati­ons. This unique take on Chinese cyber criminalit­y educates practition­ers on the threats around them, empowering them to prepare their organizati­on to be proactive, rather than reactive. Further, there are many times where organisati­ons are unaware they have been a victim of a cyberattac­k. This could include stolen data, which McAfee APG may find being sold on the dark markets, and in some cases, could have a devastatin­g effect on their business.

Sun Tzu, the Chinese general, and military strategist once articulate­d, “The art of war teaches us to rely not on the likelihood of the enemy’s not coming, but on our own readiness to receive him; not on the chance of his not attacking, but rather on the fact that we have made our position unassailab­le.” These ancient words are still very meaningful today.

If organisati­ons robustly embrace the intelligen­ce process, their defensive posture will exponentia­lly improve.

 ??  ??
 ??  ??

Newspapers in English

Newspapers from India