Events , Next-Generation Technologies & Secure Development , RSA Conference
The Operationalization of Threat Intelligence Programs
Intel 471 CEO Jason Passwaters on Out-of-the-Box Approach to Threat Intel ProgramsIn the early days of threat intelligence, organizations were primarily consuming reports and linking things together. But now more entities are moving toward "operationalization out-of-the-box" for their threat intelligence programs, said Jason Passwaters, CEO of Intel 471.
"Operationalization is a course of action tied to a security risk use case, he said. "That could be threat hunting or third-party vendor-supplier risk mitigation. There's a host of security and risk use cases. Then you need to conduct the course of action to satisfy that use case. With third-party vendor-supplier risk, I need to understand the external situation and the risk of compromise to those, and then marry that up so I can assess the risk and act," he said.
In this video interview with Information Security Media Group at RSA Conference 2024, Passwaters also discussed:
- The challenges organizations face in building their own threat intelligence programs;
- How to operationalize threat intelligence programs to meet the needs of businesses;
- The significance of Intel 471's recent acquisition of Cyborg Security.
At Intel 471, Passwaters is responsible for helping shape the overall strategy of the company and leading and supporting all facets of the company in the execution of its mission. He has over 24 years of experience, including building and running iSIGHT Partners - now FireEye - Global Research department, working in federal law enforcement to track some of the world's most sophisticated cybercriminals, and conducting tactical intel collection in support of combat and other military operations. Passwaters spent the first 12 years of his career in the U.S. Marine Corps.