Pretty much everyone, across all industries, is using cyber intelligence at this time. Many using multiple sources, some automated and others that are monitored and sourced by the government.
How much is too much? How much is enough? These questions are popular topics these days. Participants unanimously agreed that is it really based on if the intelligence is actionable whether or not it is giving you value. If it is not, then it is not worth it. Actionable intelligence provides information that enables you to take action. It is often said if your team is busy doing other things that the intelligence is not actionable, but that isn’t exactly the case.
The size and maturity of a company and the type of security department that have in place can obviously affect budget size, and in turn, how well your company utilizes cyber threat intelligence. Unfortunately, there is a lot of room for the concept to evolve and it will be a hot topic over the next 5 years. How much should you spend? How much is enough? How many resources do you need and how do you justify those resources to management and the board? These are questions we will continue to explore the answers to into the future.