東華大學圖書館 |

The art of cyber threat intelligence = a comprehensive understanding /

Record Type:	Electronic resources : Monograph/item
Title/Author:	The art of cyber threat intelligence/ by Crawford Thomas.
Reminder of title:	a comprehensive understanding /
Author:	Thomas, Crawford.
Published:	Berkeley, CA :Apress : : 2025.,
Description:	xxxii, 233 p. :ill., digital ;24 cm.
[NT 15003449]:	Chapter 1. Understanding the Cyber Landscape -- Chapter 2. Understanding the Business -- Chapter 3. Create the Vectors - Threat First - Actor Second -- Chapter 4. Geopolitics -- Chapter 5. Fraud -- Chapter 6. Spheres of Influence -- Chapter 7. Fusion -- Chapter 8. PIRs (Priority Intelligence Requirements)- Chapter 9. Intelligence Collection Plans (ICPs) -- Chapter 10. RFIs (Requests for Information) -- Chapter 11. Vendors -- Chapter 12. Intelligence Sources -- Chapter 13. Internal Control Data -- Chapter 14. Intelligence Sharing -- Chapter 15. The Cyber Criminal -- Chapter 16. Scenarios for Testing -- Chapter 17. End to End Process -- Chapter 18. Heat Maps -- Chapter 19. Inherent Threat vs. Residual Risk -- Chapter 20. AI Emerging Technology -- Chapter 21. The Attack Surface -- Chapter 22. The MITRE ATT&CK Framework in Cyber Threat Intelligence -- Chapter 23. The Stakeholders -- Chapter 24: Intelligence Report Writing - The CTI Output -- Chapter 25: Intelligence Maturity - Balancing Growth with Purpose -- Chapter 26: The Near Future - What Else is Going On -- Chapter 27: Final Thoughts of Significance: Lessons Beyond the Page.
Contained By:	Springer Nature eBook
Subject:	Computer security. -
Online resource:	https://doi.org/10.1007/979-8-8688-1739-7
ISBN:	9798868817397

The art of cyber threat intelligence = a comprehensive understanding /
Thomas, Crawford.

The art of cyber threat intelligencea comprehensive understanding /[electronic resource] :by Crawford Thomas. - Berkeley, CA :Apress :2025. - xxxii, 233 p. :ill., digital ;24 cm.

Chapter 1. Understanding the Cyber Landscape -- Chapter 2. Understanding the Business -- Chapter 3. Create the Vectors - Threat First - Actor Second -- Chapter 4. Geopolitics -- Chapter 5. Fraud -- Chapter 6. Spheres of Influence -- Chapter 7. Fusion -- Chapter 8. PIRs (Priority Intelligence Requirements)- Chapter 9. Intelligence Collection Plans (ICPs) -- Chapter 10. RFIs (Requests for Information) -- Chapter 11. Vendors -- Chapter 12. Intelligence Sources -- Chapter 13. Internal Control Data -- Chapter 14. Intelligence Sharing -- Chapter 15. The Cyber Criminal -- Chapter 16. Scenarios for Testing -- Chapter 17. End to End Process -- Chapter 18. Heat Maps -- Chapter 19. Inherent Threat vs. Residual Risk -- Chapter 20. AI Emerging Technology -- Chapter 21. The Attack Surface -- Chapter 22. The MITRE ATT&CK Framework in Cyber Threat Intelligence -- Chapter 23. The Stakeholders -- Chapter 24: Intelligence Report Writing - The CTI Output -- Chapter 25: Intelligence Maturity - Balancing Growth with Purpose -- Chapter 26: The Near Future - What Else is Going On -- Chapter 27: Final Thoughts of Significance: Lessons Beyond the Page.

In the ever-evolving world of cybersecurity, the need for robust and proactive threat intelligence has never been more critical. This book is designed to arm you with the essential knowledge and tools required to establish a world-class cyber threat intelligence (CTI) capability. Authored by Crawford Thomas, a seasoned expert with over two decades of frontline experience in military intelligence and cyber threat intelligence within the financial sector, this guide is not just theoretical-it's a distillation of hard-earned, practical wisdom. This book is not a typical consultation manual filled with checkboxes and generic advice. Instead, it draws from the real-world experiences of a practitioner who has navigated the complexities of regulatory pressures and excelled in environments that demand nothing less than excellence. Notably, during a recent CBEST testing, Thomas's leadership and the performance of his CTI team were described as "formidable." This recognition underscores the level of expertise and effectiveness you can expect to learn from. You are invited on a comprehensive journey through the critical stages of building a CTI function: from developing a strategic vision, formulating prioritized intelligence requirements, and selecting the right vendors, to mastering the nuances of intelligence reporting. This book is designed to guide you in creating a CTI capability that not only protects your business, but also enhances its efficacy and fosters an environment of reliability and trust-both internally and externally. The necessity for this book stems from the current cybersecurity landscape where businesses face an increasing barrage of threats. They require impeccable IT security across all platforms, often taking on risks that stretch beyond their risk appetite. Email systems, provided ubiquitously by major vendors, remain a prime target despite advanced security measures. Meanwhile, the rise of Ransomware as a Service has given a new edge to this already formidable threat, turning organizations into unwitting participants in attacks aimed at third-party applications. What You Will Learn: How to build a world leading cyber threat intelligence capability that is threat vector focused. Estimate the size of the cyber threat intelligence team you require, How to build the prioritized intelligence requirements (PIRs) and collection plan. How to select the correct cyber security vendor-in line with the PIRs. How to develop 'pull intelligence' production and reporting writing. Who This Book is for: This book is for all levels of cyber analyst capability. From the beginner, with a hunger to find a definitive answer to 'what is a cyber threat intelligence capability'? To the expert, who is keen to learn of a better way to do their tradecraft. this book is also for the frustrated and burnt out in-house cyber specialist, who has grown cautious of the vendor market, the costs, the lack of integrations. The 10 year cyber expert who is aware of the changing threat landscape and the need to be more dynamic, responsive and efficient.

ISBN: 9798868817397

Standard No.: 10.1007/979-8-8688-1739-7doiSubjects--Topical Terms:

540555
Computer security.

LC Class. No.: QA76.9.A25

Dewey Class. No.: 005.8

The art of cyber threat intelligence = a comprehensive understanding /
LDR:05290nmm a2200349 a 4500 001 2422960
003 DE-He213
005 20260102122837.0
006 m d
007 cr nn 008maaau
008 260505s2025 cau s 0 eng d
020 $a 9798868817397 $q (electronic bk.)
020 $a 9798868817380 $q (paper)
024 7 $a 10.1007/979-8-8688-1739-7 $2 doi
035 $a 979-8-8688-1739-7
040 $a GP $c GP
041 0 $a eng
050 4 $a QA76.9.A25
072 7 $a UR $2 bicssc
072 7 $a UTN $2 bicssc
072 7 $a COM053000 $2 bisacsh
072 7 $a UR $2 thema
072 7 $a UTN $2 thema
082 0 4 $a 005.8 $2 23
090 $a QA76.9.A25 $b T455 2025
100 1 $a Thomas, Crawford. $3 3805167
245 1 4 $a The art of cyber threat intelligence $h [electronic resource] : $b a comprehensive understanding / $c by Crawford Thomas.
260 $a Berkeley, CA : $b Apress : $b Imprint: Apress, $c 2025.
300 $a xxxii, 233 p. : $b ill., digital ; $c 24 cm.
505 0 $a Chapter 1. Understanding the Cyber Landscape -- Chapter 2. Understanding the Business -- Chapter 3. Create the Vectors - Threat First - Actor Second -- Chapter 4. Geopolitics -- Chapter 5. Fraud -- Chapter 6. Spheres of Influence -- Chapter 7. Fusion -- Chapter 8. PIRs (Priority Intelligence Requirements)- Chapter 9. Intelligence Collection Plans (ICPs) -- Chapter 10. RFIs (Requests for Information) -- Chapter 11. Vendors -- Chapter 12. Intelligence Sources -- Chapter 13. Internal Control Data -- Chapter 14. Intelligence Sharing -- Chapter 15. The Cyber Criminal -- Chapter 16. Scenarios for Testing -- Chapter 17. End to End Process -- Chapter 18. Heat Maps -- Chapter 19. Inherent Threat vs. Residual Risk -- Chapter 20. AI Emerging Technology -- Chapter 21. The Attack Surface -- Chapter 22. The MITRE ATT&CK Framework in Cyber Threat Intelligence -- Chapter 23. The Stakeholders -- Chapter 24: Intelligence Report Writing - The CTI Output -- Chapter 25: Intelligence Maturity - Balancing Growth with Purpose -- Chapter 26: The Near Future - What Else is Going On -- Chapter 27: Final Thoughts of Significance: Lessons Beyond the Page.
520 $a In the ever-evolving world of cybersecurity, the need for robust and proactive threat intelligence has never been more critical. This book is designed to arm you with the essential knowledge and tools required to establish a world-class cyber threat intelligence (CTI) capability. Authored by Crawford Thomas, a seasoned expert with over two decades of frontline experience in military intelligence and cyber threat intelligence within the financial sector, this guide is not just theoretical-it's a distillation of hard-earned, practical wisdom. This book is not a typical consultation manual filled with checkboxes and generic advice. Instead, it draws from the real-world experiences of a practitioner who has navigated the complexities of regulatory pressures and excelled in environments that demand nothing less than excellence. Notably, during a recent CBEST testing, Thomas's leadership and the performance of his CTI team were described as "formidable." This recognition underscores the level of expertise and effectiveness you can expect to learn from. You are invited on a comprehensive journey through the critical stages of building a CTI function: from developing a strategic vision, formulating prioritized intelligence requirements, and selecting the right vendors, to mastering the nuances of intelligence reporting. This book is designed to guide you in creating a CTI capability that not only protects your business, but also enhances its efficacy and fosters an environment of reliability and trust-both internally and externally. The necessity for this book stems from the current cybersecurity landscape where businesses face an increasing barrage of threats. They require impeccable IT security across all platforms, often taking on risks that stretch beyond their risk appetite. Email systems, provided ubiquitously by major vendors, remain a prime target despite advanced security measures. Meanwhile, the rise of Ransomware as a Service has given a new edge to this already formidable threat, turning organizations into unwitting participants in attacks aimed at third-party applications. What You Will Learn: How to build a world leading cyber threat intelligence capability that is threat vector focused. Estimate the size of the cyber threat intelligence team you require, How to build the prioritized intelligence requirements (PIRs) and collection plan. How to select the correct cyber security vendor-in line with the PIRs. How to develop 'pull intelligence' production and reporting writing. Who This Book is for: This book is for all levels of cyber analyst capability. From the beginner, with a hunger to find a definitive answer to 'what is a cyber threat intelligence capability'? To the expert, who is keen to learn of a better way to do their tradecraft. this book is also for the frustrated and burnt out in-house cyber specialist, who has grown cautious of the vendor market, the costs, the lack of integrations. The 10 year cyber expert who is aware of the changing threat landscape and the need to be more dynamic, responsive and efficient.
650 0 $a Computer security. $3 540555
650 0 $a Cyber intelligence (Computer security) $v Congresses. $3 2074226
650 1 4 $a Data and Information Security. $3 3538510
710 2 $a SpringerLink (Online service) $3 836513
773 0 $t Springer Nature eBook
856 4 0 $u https://doi.org/10.1007/979-8-8688-1739-7
950 $a Professional and Applied Computing (SpringerNature-12059)