How to use Strategic CTI to address shortfalls in understanding systemic cyber risk
High level risk managers struggle to assess cyber risk and consistently fail to account for the risk of large-scale systemic cyberattacks that can have sweeping impacts on organizations. They struggle because they do not understand cyber risk, they do not consider the appropriate operational and systemic cyber risk scenarios, and they do not have evidence to determine the likelihood of these scenarios. Strategic CTI can help address this problem. In this talk, I will show the methodology from our recently published paper on how CTI analysts can help their organization's operational risk managers understand cyber risk, use our intelligence reporting on threat actors to inform what systemic cyber risk events are plausible and how likely they are.
.PNG "DFIR_ICON_(1).PNG"){kind=icon}
