Freely subscribe to our NEWSLETTER

SecureData GI detects the 1% of threats that matter and fills in the gaps many customers are faced with due to the inability of any single ‘black box’ technology to deliver comprehensive, contextual threat intelligence.

The service brings together the capabilities of SecureData’s 24x7 Security Operations Centres (SOCs) and its dedicated team of cloud analysts in the Cyber Crime Unit, the expertise of SecureData’s sister companies - consultancy and forensics specialist, SensePost and big data outfit Paterva - alongside proprietary software and vendor technologies. These components combined deliver an integrated service that customers can rely on to collect, analyse, detect and interpret the threats that are material to their business operations.

SecureData GI uses a funnel approach to threat intelligence, with three tiered stages of security intelligence:

Top: Software algorithms and hardware sit directly underneath the customer’s data, it analyses their internal environment and millions of logs through proprietary software which acts as the ‘intelligence brain’. Vulnerability scanning software identifies dynamic risk, and this is combined with risk management tools and SIEM correlation and analysis to prepare security information for the next stage.

Middle: Big data analytics capabilities come in to play; analysing hundreds of security events via threat feeds and matching to real-time vulnerabilities to create contextual threat intelligence. GI also integrates external threat data, creating a holistic view of the threat landscape by querying multiple data sources that may relate to the threat and the company in question.

Bottom: Human expertise from SecureData’s highly accredited 24x7x365 management and response team, act as the eyes and ears for interpretation of security intelligence. They manage hardware, collecting and correlating data to form the first line of our human intelligence, which is supported by Defence and Threat Analysts in the Cyber Crime Unit, who have both defensive (profiling and risk assessments) and offensive (ethical hacking and criminal) mindsets.

The new service is launched alongside a comprehensive whitepaper, which provides in-depth analysis of the threat intelligence market, reviewing analyst and vendor definitions to comprehensively conclude that threat intelligence must be delivered through a combination of machine and human expertise.

The "Demystifying Threat Intelligence" whitepaper, compiled by the Cyber Crime Unit’s lead cloud security analyst, Adam Shoeman also provides a historical context for the term’s military connotations and charts the rise of ‘business intelligence’, which can be traced back as early as 1865.