Using Cyber Threat Intelligence to defend against advanced cyber threats: The Theories and Practice

Programme

Talk 1: Cyber Threat Intelligence – Innovating Towards a Mature CTI Capability
By Richard Kerkdijk, Senior Security Consultant at TNO
Over the past years, the landscape of cyber threats has greatly evolved. To keep up with the sophisticated methods of cyber adversaries, many organizations are developing Cyber Threat Intelligence (CTI) capabilities. In essence, such capabilities serve to anticipate (existing or emerging) cyber threats (rather than awaiting an incident). This presentation will introduce the concept of CTI, the position of CTI operations in an organizational context and the typical (im)maturity of present day CTI practices. It will also address the need for automation in CTI operations and provide some perspective on present day automation solutions. The presentation will conclude by sharing some practical experiences in CTI sharing and collaboration.

Talk 2: Cyber Threat Intelligence in practice: insights from a community-driven approach
By Maxime Boegem, Production Manager EclecticIQ Fusion Center at EclecticIQ
Recent global attacks such as Wannacry and Petya show the need for incorporating cyber threat intelligence into an organization’s security operation. Attacks are continuously becoming more complex, whereas solutions can often be provided efficiently by a community-driven approach. Technologies such as threat intelligent platforms are maturing quickly, however ‘trust’ continues to be a challenging factor within intelligence communities. How can we evolve communities to a level where everyone can easily contribute?

Talk 3: I Stopped Being Surprised, and Started Being Prepared
By Reza Rafati, Malware Intelligence Team Coordinator at RedSocks Security
Threat Intelligence should provide insights on what is happening in a monitored environment, so the time of being surprised is long gone, the information age is now, and the use of threat intelligence is a must if you want to stay in control of your environment.

For whom

This half day event is for cyber security professionals (CISOs, CIOs, IT security staff) working at medium-to-large companies and governments that want to familiarize their selves with Cyber Threat Intelligence theories and practices. It does not require a strong technical background.