Security News > 2020 > October > When it Comes to Threat Intelligence, a Multi-Vendor Strategy is Needed

When it Comes to Threat Intelligence, a Multi-Vendor Strategy is Needed
2020-10-26 11:08

The purpose of threat intelligence is to collect data from a variety of sources outside of the organization's perimeters and generate intelligence on what is happening "Out there", enriching the organization's security operations.

Threat intelligence provides visibility that extends beyond the organization's perimeters - and this visibility is based on the vendor's coverage on intelligence sources.

When reviewing a threat intelligence vendor as part of a multi-vendor strategy, it is best to review their unique value proposition - not so much in features, but in terms of intelligence.

Do they provide intelligence that other vendors don't? How many deliverables do they provide of a certain type that others also cover, compared to these other vendors? You may discover that the price of the intelligence service is well worth the unique deliverables by the vendor.

Having multiple vendors helps identify the strengths and weaknesses of each service - which may be quite helpful both on an on-going basis, but also when it comes a time to evaluate the current solutions being used and building a new stack of threat intelligence vendors that complement each other.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/76XrlLp5eHA/when-it-comes-threat-intelligence-multi-vendor-strategy-needed