Most organizations think about threat intelligence as a list of threat indicators you add into your sensors and SIEMs to detect malicious activity. Within Microsoft’s corporate security organization we’ve taken a more holistic approach to using threat intelligence across the Identify, Protect, Detect and Respond security domains to help teams drive prioritization of controls, improve proactive defenses and help executives make informed risk decisions. In this discussion, we will show the simple and easy things enterprises can do to improve how threat intelligence can be used in their organizations.
PUBLICIDADE
