Allan Liska, an intelligence analyst at Somerville, Mass.-based network security firm Recorded Future, has said government agencies should leverage threat intelligence to help protect their systems and networks from cyber threats.
“Threat intelligence can provide real-time context on the risks posed by third parties, allowing agencies to take appropriate steps to protect their supply chain,” Liska wrote.
He cited the importance of a vulnerability management program and how machine learning could help agencies speed up patching of cyber vulnerabilities and allow security teams to free up time to prepare for unforeseeable cyber attacks.
“Machine learning can help security teams meet the promise of uniting people, process and technology against cyber risk,” Liska wrote. “Applying machine learning to a [security information and event management] or an [information retrieval] system can create automated processes that could handle such actions and deliver a report at the end of the day — reducing the hundreds of man-hours involved in routine responses to minutes.”
He said security professionals should be able to tell a story and have an action plan in place to better explain the cybersecurity needs of an agency.
“With context provided by threat intelligence, agencies can better allocate budgets and security resources, and stop threats before they happen,” Liska added.