Intelligence Survey Research Findings 2014 Property of UBM Tech All Rights Reserved Y oure likely swimming in security data but what are the best tools and practices for analyzing it all How can you use data to uncover compromises or targeted attacks The answer is threat intellige ID: 510814
Download Presentation The PPT/PDF document "Dark Reading Threat" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
Dark Reading Threat IntelligenceSurvey
Research Findings
© 2014 Property of UBM Tech; All Rights ReservedSlide2
You're likely swimming in security data, but what are the best tools and practices for analyzing it all? How can you use data to uncover compromises or targeted attacks? The answer is threat intelligence, which we define as the collection and analysis of information about existing and emerging threats to information assets -- it's used to inform decisions on how best to respond to and mitigate these threats
.Among the 397 respondents to our InformationWeek and Dark Reading Threat Intelligence Survey, 85% say this intel plays some role in their IT security strategies. Among the 337 respondents using threat intelligence
:>> 75% cite vulnerabilities exploited when asked what they attempt to identify through data analysis; 58% try to pinpoint the source of attacks.
>> 61% consider their programs a good value for the money; 12% say their program is "worth its weight in gold." >> 51% subscribe to two or more third-party security intelligence feeds; 10% leverage five or more.
>> 22% run ad hoc queries against their data on a daily basis vs. 14% who check in only monthly. That's a long time in this age of fast-moving events.
Want more? Visit InformationWeek Reports Executive Summary
v
© 2014 Property of UBM Tech; All Rights ReservedSlide3
Threat intelligence plays role for 85% of respondents
© 2014 Property of UBM Tech; All Rights ReservedSlide4
Most use log management and SIEM for threat intelligence
© 2014 Property of UBM Tech; All Rights ReservedSlide5
Cloud: not a popular place for log management/SIEM
© 2014 Property of UBM Tech; All Rights ReservedSlide6
Data-feed configuration simplicity: split decision
© 2014 Property of UBM Tech; All Rights ReservedSlide7
Rule-set configuration: a little easier
© 2014 Property of UBM Tech; All Rights ReservedSlide8
Too few realize benefits of threat intelligence analysis
© 2014 Property of UBM Tech; All Rights ReservedSlide9
Network traffic logs commonly used
© 2014 Property of UBM Tech; All Rights ReservedSlide10
One-third aren’t using third-party feeds
© 2014 Property of UBM Tech; All Rights ReservedSlide11
About half run ad hoc queries at least weekly
© 2014 Property of UBM Tech; All Rights ReservedSlide12
How threat level affects data query frequency
© 2014 Property of UBM Tech; All Rights ReservedSlide13
Most looking for exploited vulnerabilities, attacked assets
© 2014 Property of UBM Tech; All Rights ReservedSlide14
Few say analysis doesn’t improve risk assessments
© 2014 Property of UBM Tech; All Rights ReservedSlide15
Defenses change based on threat intelligence
© 2014 Property of UBM Tech; All Rights ReservedSlide16
Threat intelligence analysis speeds breach discovery
© 2014 Property of UBM Tech; All Rights ReservedSlide17
Half say threat intelligence
uncovered an APT
© 2014 Property of UBM Tech; All Rights ReservedSlide18
Threat intelligence is a smart investment, say 73%
© 2014 Property of UBM Tech; All Rights ReservedSlide19
Only one-quarter built their own security analytics
© 2014 Property of UBM Tech; All Rights ReservedSlide20
Specialized training: not yet the norm
© 2014 Property of UBM Tech; All Rights ReservedSlide21
IT staff highly represented in survey respondents
© 2014 Property of UBM Tech; All Rights ReservedSlide22
Surveyed companies revenue spread
© 2014 Property of UBM Tech; All Rights ReservedSlide23
Surveyed companies industry spread
© 2014 Property of UBM Tech; All Rights ReservedSlide24
Surveyed companies lean toward midsize businesses
© 2014 Property of UBM Tech; All Rights ReservedSlide25
Survey Name Dark Reading Threat Intelligence Survey
Survey Date
June 2014Region
North America Number
of Respondents
397Purpose To examine the impact threat intelligence has on IT security strategy.Methodology Dark Reading, in partnership with InformationWeek, surveyed business technology decision-makers at North American companies. The survey was conducted online, and respondents were recruited via an email invitation containing an embedded link to the survey. The email invitation was sent to qualified Dark Reading and InformationWeek subscribers.
Want more? Visit InformationWeek Reports Research Synopsis
© 2014 Property of UBM Tech; All Rights ReservedSlide26