What should organisations be doing to benefit from the move to intelligence-led security?
I do not want to go into great detail about the method here, as the paper makes worthwhile reading for security and business executives, but I do want to highlight one aspect of intelligence-led security that stands out for me:
===> the need for information sharing. <===
An incident that one organisation may see should be shared with others in a structured and confidential way. Cybercriminals share information about us, so there is a case for us to share information about them and their techniques, motives and actions.
In summary, intelligence-led security is the only sustainable approach to security, and ===> we all need to work together <=== to move away from the compliance-based and/or firefighting approaches we have had for so long.
Read more: