The vast volume, increasing complexity and fast development of variations of threats and adversaries’ techniques, tactics and procedures require an Intelligence driven Cyber Defense. The famous Japanese warrior SunTzu taught us 2500 years ago: “If you know the enemy and know yourself, you need not fear the result of a hundred battles”. Cyber Threat Intelligence (CTI) is all about knowing what your adversaries do and using that information to improve decision-making.
Intelligence often starts as a separated function, but to make it actionable and ready for decision making it must be on multiple levels of abstraction, beyond granular IOC’s and get through into your security controls: Intelligence driven Cyber Defense.
In this session Herro Zoutendijk will take us through what CTI is, how it fits into your Information Security Program, what models and methods are used by CTI analysts, the evolution of CTI, best practices for starting a CTI initiative and all of that illustrated with some cases.
Speaker: Herro Zoutendijk
Herro leads EclecticIQ activities in Europe and the Middle East. In this capability, he advises Government sector and Enterprises on value add solutions in Cyber Threat Intelligence, thereby facilitating the market in building up effective capability in Cyber Threat Intelligence Analysis and Information Sharing.
Prior to EclecticIQ he hold senior and leadership positions at IBM, SPSS, PinkRoccade and several local Dutch companies. His more than 30 years experience spans public and private sector organizations, in sales, consulting and management roles and with enterprise systems for Cyber Security, Information Management and Information (Security) Governance, Big Data, AI and ERP. He worked on topics such as Threat Prediction & Prevention, Insider Threat, User and Entity Behavior Analytics, Cyber Threat Intelligence, Emergency Management, Information Management and Information (Security) Governance.
Herro holds degrees in Business Economy, Business Controlling and Logistics/Supply Chain Management, as well as various certificates including ISACA’s CISM and CDPSE.