The presentation discusses the importance of cyber threat intelligence in protecting applications and businesses. It provides insights on how to integrate it into an application security program and automate data collection and processing to prevent or mitigate cyber attacks.
- Digital technologies have revolutionized the world's economic and cultural institutions but have brought additional risk in the form of cyber attacks
- Cyber Threat Intelligence (CTI) is important in consolidating a company and protecting applications
- CTI is the collection and analysis of information about cyber threats and adversaries to provide context and prevent/mitigate attacks
- CTI should be objectively actionable and help reduce the effectiveness of cyber threats
- CTI can be a driver for cybersecurity return of investment
- CTI is lacking a methodology in the application world
- Intelligence is often shared but hardly used and distribution is difficult
- Lessons from the intelligence community can be applied to CTI
The speaker works for Visma, a conglomerate with over 130 companies and 5k developers, facing around 30 incidents per year. To deliver secure products, they offer various services such as training, code scanning, pen testing, and hybrid intelligence. They also have a gamified governance UI that provides a maturity index of an application's security. This illustrates the importance of implementing CTI in a company with a large and complex structure.