By the end of this book, you will be able to boot up an intelligence program in your organization based on the operation and tactical/strategic spheres of Cyber defense intelligence.
What you will learn
- Learn about the Observe-Orient-Decide-Act (OODA) loop and it's applicability to security
- Understand tactical view of Active defense concepts and their application in today's threat landscape
- Get acquainted with an operational view of the F3EAD process to drive decision making within an organization
- Create a Framework and Capability Maturity Model that integrates inputs and outputs from key functions in an information security organization
- Understand the idea of communicating with the Potential for Exploitability based on cyber intelligence
Who This Book Is ForThis book targets incident managers, malware analysts, reverse engineers, digital forensics specialists, and intelligence analysts; experience in, or knowledge of, security operations, incident responses or investigations is desirable so you can make the most of the subjects presented.
Table of Contents
- The Need for Cyber Intelligence
- Intelligence Development
- Integrating Cyber Intel, Security, and Operations
- Using Cyber Intelligence to Enable Active Defense
- F3EAD For You and For Me
- Integrating Threat Intelligence and Operations
- Creating the Collaboration Capability
- The Security Stack
- Driving Cyber Intel
- Baselines and Anomalies
- Putting Out the Fires
- Vulnerability Management
- Risky Business
- Assigning Metrics
- Putting It All Together
