Using cyber threat intelligence as a part of organisational cybersecurity
Kyberuhkatiedustelu on hieman kiistanalainen aihe ammatillisissa ja akateemisissa piireissä. Koska osa-alue on vielä nuori, tutkimus toimivuuden osalta on vielä vähäistä. Julkisuudessa moni kyberhyökkäys on saanut huomiota. Tämä tutkimus selvittää kyberuhkatiedustelun käyttöä osana organisaatioiden kyberpuolustusta.
Tutkielma tehtiin laadullisena tutkimuksena, sisällön analyysin keinoin valitsemalla 14 dokumenttia. Näiden dokumenttien ja OODA silmukan pohjalta luotiin viitekehys kyberuhkatiedustelun käyttöön organisaatioissa. Johtopäätöksenä on todettu, että kyberuhkatiedustelu voi tarjota tarvittavaa tietoa, jolla organisaatio voi puolustautua kyberuhkia vastaan. Cyber Threat Intelligence (CTI) has gained public attention at the same time security breaches are publicised in the press. This thesis is conducted as qualitative study to research Cyber Threat Intelligence usage to harder organisations’ cyber defence. Through content analysis, 14 documents were coded and analysed to form a preliminary framework for CTI usability in organisations.
This thesis is using known OODA loop as framework to clarify CTI usage in organizations. As qualitative study, one framework was created. For results, CTI can provide much needed addition for organisational cyber security. From strategic to tactical, CTI can enhance cyber defence is properly used.
Keywords
Metadata
Show full item recordCollections
- Pro gradu -tutkielmat [29743]
License
Related items
Showing items with similar title or keywords.
-
Strategic cyber threat intelligence : Building the situational picture with emerging technologies
Voutilainen, Janne; Kari, Martti (Academic Conferences International, 2020)In 2019, e-criminals adopted new tactics to demand enormous ransoms from large organizations by using ransomware, a phenomenon known as “big game hunting.” Big game hunting is an excellent example of a sophisticated and ... -
TARA+AD: Threat Analysis and Risk Assessment for Automated Driving : cybersecurity of road vehicles
Loskin, Ilona (2023)Cybersecurity of road vehicles has become a genuine matter as vehicles are not manufactured anymore as plain mechanical devices but containing numerous amounts of computers and millions of lines of code. The intelligent ... -
Militarizing red teaming : agile and scalable process for cyber red teaming using adaptive planning and execution framework
Tuovinen, Jussi; Frilander, Kimmo (2019)Red teaming toiminnan tavoitteena on luoda parempia suunnitelmia, tuotteita tai käytänteitä millä tahansa toimialalla haastamalla ja kyseenalaistamalla nykyisiä malleja. Toiminnan ytimessä on etenkin tulevaisuuden riskien ... -
Cyber Situational Awareness in Critical Infrastructure Organizations
Pöyhönen, Jouni; Rajamäki, Jyri; Nuojua, Viivi; Lehto, Martti (Springer, 2021)The capability related to cybersecurity plays an ever-growing role on overall national security and securing the functions vital to society. The national cyber capability is mainly composed by resilience of companies running ... -
Analysing Multidimensional Strategies for Cyber Threat Detection in Security Monitoring
Shelke, Palvi; Hämäläinen, Timo (Academic Conferences International Ltd, 2024)The escalating risk of cyber threats requires continuous advances in security monitoring techniques. This survey paper provides a comprehensive overview of recent research into novel methods for cyber threat detection, ...