Cybersecurity as an industry: A cyber threat intelligence perspective

Sagar Samtani, Maggie Abate, Victor Benjamin, Weifeng Li

Research output: Chapter in Book/Report/Conference proceedingChapter

31 Scopus citations

Abstract

The rapid integration of information technology has been met with an alarming rate of cyber-attacks conducted by malicious hackers using sophisticated exploits. Many organizations have aimed to develop timely, relevant, and actionable cyber threat intelligence (CTI) about emerging threats and key threat actors to enable effective cybersecurity decisions. To streamline and create efficient and effective CTI capabilities, many major cybersecurity companies such as FireEye, Anomali, ThreatConnect, McAfee, CyLance, ZeroFox, and numerous others have aimed to develop CTI platforms, enabling an unprecedented ability to prioritize threats; pinpoint key threat actors; understand their tools, techniques, and procedures (TTP); deploy appropriate security controls; and ultimately, improve overall cybersecurity hygiene. Given the significant benefits of such platforms, our objective for this chapter is to provide a systematic review of existing CTI platforms within industry today. Such a review can offer significant value to academics across multiple disciplines (e.g., sociology, computational linguistics, computer science, information systems, and information science) and industry professionals across public and private sectors. Systematically reviewing existing CTI platforms identified five future possible directions CTI start-ups can explore: (1) shift from reactive to proactive OSINT-based CTI platforms, (2) enhancement of natural language processing (NLP) and text mining capabilities, (3) enhancement of data mining capabilities, (4) further integration of big data and cloud computing technologies, and (5) opportunities and strategies for academia to address identified gaps.

Original languageEnglish (US)
Title of host publicationThe Palgrave Handbook of International Cybercrime and Cyberdeviance
PublisherPalgrave Macmillan
Pages135-154
Number of pages20
ISBN (Electronic)9783319784403
ISBN (Print)9783319784397
DOIs
StatePublished - Jan 1 2020

Keywords

  • Cyber threat intelligence
  • Data mining
  • Data sources
  • Platforms

ASJC Scopus subject areas

  • General Social Sciences
  • General Computer Science
  • General Psychology

Fingerprint

Dive into the research topics of 'Cybersecurity as an industry: A cyber threat intelligence perspective'. Together they form a unique fingerprint.

Cite this