dark reading threat intelligence survey research findings © 2014 property of ubm tech; all rights...

Dark Reading Threat IntelligenceSurvey Research Findings

© 2014 Property of UBM Tech; All Rights Reserved

http://www.linkedin.com/today/informationweek.com

https://twitter.com/InformationWeek

http://www.facebook.com/informationweek

http://www.informationweek.com/rss/all

https://plus.google.com/108720492902396433722

You're likely swimming in security data, but what are the best tools and practices for analyzing it all? How can you use data to uncover compromises or targeted attacks? The answer is threat intelligence, which we define as the collection and analysis of information about existing and emerging threats to information assets -- it's used to inform decisions on how best to respond to and mitigate these threats.

Among the 397 respondents to our InformationWeek and Dark Reading Threat Intelligence Survey, 85% say this intel plays some role in their IT security strategies. Among the 337 respondents using threat intelligence:

>> 75% cite vulnerabilities exploited when asked what they attempt to identify through data analysis; 58% try to pinpoint the source of attacks.

>> 61% consider their programs a good value for the money; 12% say their program is "worth its weight in gold."

>> 51% subscribe to two or more third-party security intelligence feeds; 10% leverage five or more.

>> 22% run ad hoc queries against their data on a daily basis vs. 14% who check in only monthly. That's a long time in this age of fast-moving events.

Want more? Visit InformationWeek Reports

Executive Summary

v© 2014 Property of UBM Tech; All Rights Reserved

http://reports.informationweek.com/abstract/21/12527/Security/Threat-Intelligence-Today.html


Threat intelligence plays role for 85% of respondents


Most use log management and SIEM for threat intelligence


Cloud: not a popular place for log management/SIEM


Data-feed configuration simplicity: split decision


Rule-set configuration: a little easier


Too few realize benefits of threat intelligence analysis


Network traffic logs commonly used


One-third aren’t using third-party feeds


About half run ad hoc queries at least weekly


How threat level affects data query frequency


Most looking for exploited vulnerabilities, attacked assets


Few say analysis doesn’t improve risk assessments


Defenses change based on threat intelligence


Threat intelligence analysis speeds breach discovery


Half say threat intelligence uncovered an APT


Threat intelligence is a smart investment, say 73%


Only one-quarter built their own security analytics


Specialized training: not yet the norm


IT staff highly represented in survey respondents


Surveyed companies revenue spread


Surveyed companies industry spread


Surveyed companies lean toward midsize businesses


Survey Name Dark Reading Threat Intelligence Survey

Survey Date June 2014

Region North America

Number of Respondents 397

Purpose To examine the impact threat intelligence has on IT security strategy.

Methodology Dark Reading, in partnership with InformationWeek, surveyed business technology decision-makers at North American companies. The survey was conducted online, and respondents were recruited via an email invitation containing an embedded link to the survey. The email invitation was sent to qualified Dark Reading and InformationWeek subscribers.

Want more? Visit InformationWeek Reports

Research Synopsis




https://twitter.com/InformationWeek

http://www.facebook.com/informationweek

http://www.informationweek.com/rss/all

https://plus.google.com/108720492902396433722

http://www.linkedin.com/today/informationweek.com

dark reading threat intelligence survey research findings © 2014 property of ubm tech; all rights...

Documents

property of ubm tech

rights reserved slide

data analysis

threat level

security data

analysis of information

analysis doesnt

data query frequency