Developing a Proactive Threat Intelligence Capability
Date : 23 January 2018
Time : 11:00 AM to 12:37 PM IST
Topic : Developing a Proactive Threat Intelligence Capability
Collaborators : Mr. Ashish Thapar, Verizon & Mr. Roy Porter
Threat Intelligence is a capability where knowledge about adversaries and their motivations, intentions, and methods is collected, analyzed, and disseminated in ways that helps security and business staff at all levels protect the critical assets of the enterprise. The Data Breach Information Report (DIBR) from Verizon shows a trend where dwell times are increasing. Dwell time is the time between when the infilteration happens and when an attack is perpetrated. The data also suggests that the detection of data breaches is increasingly being found from external sources. Given these trends organizations may want to develop a Threat Intelligence capability to proactive monitor potential threats or attacks pertinent to the organization in order to take appropriate cyber risk mitigation steps. In this webinar we look at an in-dept view on what is Threat Intelligence, how an organization can develop this capability and what resources are available.
Managing Principal, Verizon
Ashish Thapar is the Managing Principal for Asia Pacific and Japan region in the Investigative Response team at Verizon Enterprise Solutions. In this role he is responsible for all customer-facing cyber incident response, digital forensics, electronic discovery, and IT investigations. Prior to this role, Ashish was responsible for the business and portfolio management of Verizon’s security professional services team in Asia. Ashish has a long history of serving countless high profile clients across multiple business verticals, assisting them with their cyber security strategy, governance risk & compliance, and threat & vulnerability management.
Ashish holds a number of global certifications such as CISSP, CISM, CISA, GCFA, CCSK and CDCP. In addition, he has also been an accredited PCI Qualified Security Assessor for several years.
Mr. Thapar has written several white papers and articles on a number of topics related to information security. He has also been an active speaker in several industry events/seminars including coverage on live TV/radio interviews as well as podcasts on issues related to cyber security.
Roy is a security consultant working as part of the threat research group for the VTRAC | Verizon Threat Research Advisory Center. As part of the VTRAC team, Roy delivers actionable intelligence to Verizon’s managed and professional security services clients through a blend of security analytics. Leveraging access to unprecedented sources of threat intelligence, he helps enterprises identify and respond to threats early in the attack cycle.
Roy threat intelligence research assists the incident response group in investigating cyber-security incidents, including those involving system compromise and data breaches. He also performs proactive Dark Net monitoring on behalf of Verizon’s customers and creates curated intelligence products utilizing predictive analytics.
Prior to joining Verizon, Roy worked with various consulting firms and government agencies. His work spans cyber-security software development, forensic analysis, and malware reverse engineering.
Roy has authored several articles covering threat intelligence topics, including attack analysis, threat actor and campaign tracking and indicator of compromise development. He’s an active contributor to Verizon’s Monthly Intelligence Briefing series and Data Breach Digest Report.