Does your organisation have a formalised threat hunting programme? If so - what were the key drivers for you in setting one up and what made it successful? If not - what is stopping you from setting this up?

Threat & Vulnerability ManagementThreat Intelligence & Incident Response
571 viewscircle icon2 Comments
Sort by:
CISO in Software2 days ago

The first question to ask is whether you are ready with the data lake, resources and time to invest in this space.  Not all companies can make this investment internally and are often best working with an external provider to explore this space as a project.

Chief of Information Security in Energy and Utilities7 days ago

If you have an IR retainer, I'd evaluate their threat hunting service. This usually provides 24/7 threat hunting at the cost of 1-2 FTE (e.g., CrowdStrike Overwatch). If you wish to build your team, consider your ability to attract and retain skilled staff while providing 24/7 coverage.

Content you might like

Have you implemented a process for deprovisioning test accounts?

Yes71%

Currently implementing26%

No2%

View Results

AI deepfakes have cost the industry over $200M this year. As CISOs, can we scale detection fast enough, or is regulatory pressure the only way to drive adoption?

Read More Comments

How are you making sure the security team has visibility into social engineering attempts on helpdesk staff, especially with attacks using voice impersonation or other deepfake techniques?

Do your employees get cybersecurity training on cloning attacks?

Yes62%

Unsure12%

No24%

View Results

What are you working on to improve your threat hunting program (whether near- or long-term)?