NISK Keynote av Martin Eian

Dr. Martin Eian works as a Senior Security Analyst in mnemonic's Threat Intelligence group, and he is the Project Manager for the research projects "Semi-Automated Cyber Threat Intelligence (ACT)" and "Threat Ontologies for CyberSecurity Analytics (TOCSA)". He has more than 15 years of work experience in IT security, IT operations, and information security research roles. In addition to his position at mnemonic, he is a member of the Europol EC3 Advisory Group on Internet Security. He holds a PhD in Telematics/Information Security from NTNU, and he has previously worked as an Adjunct Associate Professor at the Department of Telematics, NTNU.

Cyber Threat Intelligence
Cyber Threat Intelligence (CTI) originated with analysts and incident responders. In its humble beginnings, CTI consisted of ad hoc methods for information sharing and analysis. CTI has since matured significantly, with the development of models, frameworks, processes, and tools. It has also become a marketing buzzword in the cyber security industry, which can make it challenging to understand exactly what CTI is. This talk will present a brief history of CTI, explain and illustrate what CTI is and what it is not, and explain the differences between data, information, and intelligence. The talk will also cover the current state of the art and the potential future of CTI, including current challenges, models, tools, and ongoing research efforts.