Threat Intelligence
This Wiki Page can be used as a Cheat Sheet during security meetings. Or Create your own Template Checklist in Compleye Online.
The Threat Analysis Checklist:
| Define Threat | Name your threat |
| Source of Threat | How did you get aware of it? Where is it coming from? |
| Impact/Challenge | Describe high-level the impact it might/will have and the challenge ahead. |
| X-ray Components | How many components are affected by this threat? |
| Risk (Low, Medium, High) | We suggest using the same Risk Profile as your ISRA. (SEE BELOW) |
| Suggested new preventive measure | Describe high-level measures to be taken. |
| Classify chosen solution: | Classify your Measure: a. Strategic: Focus on high-level information about the threat landscape by understanding high level trends and adversarial motives and then leveraging this information when making security and business decisions. b. Tactical: Focus on intelligence on tools, techniques, and attack methodologies by conducting malware analysis and improvements. c. Operational: Focus on intelligence on specific attacks and indicators by understanding, adversarial, capabilities, infrastructure and then leveraging this information to conduct more targeted and prioritized cybersecurity operations |
| Assign a Control or Improvement | How do you want to create evidence, keep in control of your measure? Improvements are one-time activities to improve the ISMS System. Controls will be added to section Operational Planning & Control as a recurring event to monitor or check. Make sure that you select an additional control type ’threat intelligence’ next to ‘ISO 27001-Security’. And for improvement Origin ’threat intelligence’. |
In Compleye Online you can upload the Template Threat Intelligence Assessment. Content in this wiki page is included in the template, together with the Threat Intelligence Lifecycle.
