What are your preferred sources for threat intelligence?

Security & GRCNews
1.7k viewscircle icon15 Comments
Sort by:
CISO in Services (non-Government)3 years ago

Threat intelligence has become critical and important for preventing attacks. Organisation needs Threat intelligence that may impacting them and must be easily usable. Threat intelligence is best used by a prevention and detection system. Vendor TI feed is a must. We used CrowdStrike EDR, Spotlight and Falcon X, together with a IR retained. The SIEM system was integrated with all the Threat Intelligence built in the system. We then integrated our prevention and detection system with open source Threat Intelligence sources, Government, CISA/CERT, ISAC, OpenCTI, etc. 

A combination of commercial, open-source, and vendor threat feeds provided the greatest benefit with the least amount of overlap when utilizing threat intelligence from multiple sources. One have to consider the different open source threat intelligence standards that are evolving 

Director of Information Security Operations in Consumer Goods3 years ago

My current mssp threat hunting sources, and any open source available 

Director, Infrastructure, Operations & Security in Consumer Goods3 years ago

Mandiant, Proofpoint

Chief Information Security Officer in Finance (non-banking)3 years ago

Open Threat Exchange, CISA, SANS

Director in Construction3 years ago

We don't have any paid sources.  Primary source is our ISAC, with secondaries being SANS, CISA.

Content you might like

The initial feedback from ChatGPT 5 has not been universally positive, with users recognizing many of the same errors in GPT 4. Have you had a chance to use it yet? What are your overall impressions?

What is the primary way your organization anticipates using AI agents within the next 12-18 months?

To automate routine tasks and workflows (e.g., scheduling, data entry, basic customer/patient service inquiries)25%

To enhance decision-making through advanced analytics and insights generation (e.g., risk assessment, market forecasting)44%

To create new products, services, or customer/patient experiences (e.g., personalized recommendations, virtual assistants)21%

To improve cybersecurity and fraud detection (e.g., threat analysis, anomaly detection)10%

We are not currently planning to implement AI agents within the next 12-18 months

View Results

To simplify your IT, do you expect all the security controls (CASB, ZTNA, SEG and SWG) delivered by the same vendor?

Yes, I am looking at consolidating multiple vendor solutions79%

No, I am fine with managing multiple vendors20%

How can the risk management function be strengthened to counterbalance overly aggressive executive decisions?

Read More Comments

CISO here at a large enterprise—between NIS2, DORA, the Cyber Resilience Act, and growing internal pressure around shadow AI and ransomware response, it feels like we’re constantly balancing compliance overhead with real operational risk. What’s the one thing you’re losing the most sleep over in 2025?

What are your preferred sources for threat intelligence? | Gartner Peer Community