Positioning Intelligence at the Heart of security processes in ......2016/11/08 · Threat...
Transcript of Positioning Intelligence at the Heart of security processes in ......2016/11/08 · Threat...
THREATQUOTIENT, INC. PROPRIETARY CONFIDENTIAL
Positioning Intelligence at the Heart of security processes in order to revolution Cyber Defense
Wayne Chiang, Co-Founder Ryan Trost, Co-Founder
THREATQUOTIENT, INC. PROPRIETARY CONFIDENTIAL
• SoftwareEngineer/CyberSecurityPractitioner
• IEEEInfoAssuranceAuthor• 10YearsIndustryExperience• PerpetualOptimizer
• PublishedAuthor (2009&est.2015)• IndustryThoughtLeader(presented
atSANS,BlackHat,DEF CON,ISACAISRM,Interop)
• 15yearsIndustryExperience• ManagedGeneralDynamics&
USGSecurityOperationsCenter(SOC)
John Czupak, CEO
• 25+yearsstartup&cyberexperience• BroadexecutivelevelexperiencewithCisco,
Sourcefire,Axent Technologies&more• ExtensiveGo-To-Marketbackground• Garagebandguitarplayer
World Class Team
3
4
5
@
6
7
8
MesAdversaires
Donnéesexternes:OSINT,Rapports,…
Donnéesamies:GroupeMISP,CERT,Emails…
DonnéesMondeRéel:Ticketing /SIEM/IR/SANDBOX
FW/IPS WEB MAIL…
SIEM
Donnée Information Renseignement
Détection, Priorisation &Prévention
9
Threat Intelligence defense maturity leverage
10
PartialReactive Proactive Adapt ive
Protect the Enteprise Project the Threat
-CISO-DedicatedVuln.MngmtCapability-Basicsecurityinfrastructure
-CISO-DedicatedVuln.Mngmtcapability-BasicSOC/IRTcapability-Perimeterenterprisesecurityinfrastructure-Externalthreatindicatorfeeds/data
-CISO-DedicatedVuln.Mngmtcapability-AdvancedSOC/IRTcapability-CTITeam-Perimeter/internalenterprisesecurityinfrastructure-ExternalCTIconsumption(contextandindicators)
-CISO-DedicatedVuln.Mngmtcapability-SOC/IRT/CTIcapabilityw/totalinteroperability-Intelligence-integratedperimeterandinternalenterprisesecurityinfrastructure-ExternalandinternalCTIconsumption(contextandindicators)
Organ iza t iona l D i sposi t ionEmploy basic/t raditional defenses Total intell igence-driven cybersecurity
THREATQUOTIENT, INC. PROPRIETARY CONFIDENTIAL
Questions?