Reston, VA, USA
Jul 20, 2021   |  By Anthony Stitt
Incidents of ransomware have been increasing and evolving steadily for years as financially motivated adversaries shift tactics when one is no longer profitable. Unfortunately, many organizations haven’t been able to adapt their security operations to keep up. Back in 2019, 60% of organizations told ESG that they experienced a ransomware attack that year, with 29% reporting that attacks happened at least on a weekly basis.
Jul 13, 2021   |  By ThreatQuotient
ThreatQ Data Exchange allows analysts to easily share curated threat intelligence within and between related organisations.
Jul 13, 2021   |  By Dave Krasik
There’s no doubt that an analyst’s ability to efficiently share curated threat intelligence has a significant impact on the success of their organization’s overall security operations. In fact, this capability is so important that removing barriers to sharing threat information is the first requirement outlined in the Executive Order issued by the White House on May 12, 2021.
Jul 8, 2021   |  By Liz Bush
Most organizations have more threat intelligence than they know what to do with, from a variety of sources – commercial, open source, government, industry sharing groups and security vendors. Bombarded by millions of threat data points every day, it can seem impossible to appreciate or realize the full value of third-party data.
Jun 29, 2021   |  By Jonathan Couch
Sometimes the hardest part of any project is getting started. But when it comes to strengthening your security operations program, the escalation of cyberattacks over the last few months have shown us there’s no time to waste. You need to make sure you’re leveraging threat intelligence throughout your security operations to understand your adversaries, strengthen defenses, and accelerate detection and response.
Jun 8, 2021   |  By Liz Bush
SIEMs have been around for decades, designed to replace manual log correlation to identify suspicious network activity by normalizing alerts across multiple technology vendors. SIEMs correlate massive amounts of data from the sensor grid (your internal security solutions, mission-critical applications and IT infrastructure). As organizations are looking at ways to mine through SIEM data to find threats and breaches, they are bringing in threat intelligence feeds to help.
Jun 2, 2021   |  By Liz Bush
For many years, cybersecurity professionals have talked about the OODA loop. Devised by Colonel John Boyd, it describes a decision-making cycle that fighter pilots apply in dog fights, and when mastered, allows them to outwit adversaries. The acronym stands for Observe, Orient, Decide and Act, and if you can go through this decision cycle faster than your adversary, you can defeat them.
May 25, 2021   |  By Liz Bush
The new SANS 2021 Report: Top Skills Analysts Need to Master analyzes the need for organizations to invest in improving their security operations and identifies the skills analysts must master to support this initiative. Characterizing an analyst as essentially an investigator, the SANS report breaks the investigative process down into two primary areas: Investigative Tasks and Investigative Thinking.
May 18, 2021   |  By Liz Bush
As organizations continue to evolve their security operations maturity and the SOC increasingly focuses on detection and response, three capabilities are foundational for success – threat intelligence, integration and automation. In a recent webinar, “Evolution of CTI – Use Case in a Modern SOC,” ThreatQuotient’s Yann Le Borgne, together with Ben van Ditmars of Atos and Martin Ohl from McAfee tackle this topic.
May 11, 2021   |  By Liz Bush
We all know the security industry mantra: it’s not a matter of if, but when and how we’ll be attacked. Recent reports of intrusion activity increasing fourfold in the last two years and a raft of alerts warning of a rise in attacks on schools, hospitals and healthcare providers, and critical infrastructure companies during the global pandemic have only reinforced this.
Jul 8, 2021   |  By ThreatQuotient
Behind marketing buzzwords, product pitches, and business cycles, the complex cybersecurity market often forgets about the force that makes our world turn: the people that are embedded within it. That’s why we’ve created a livestream series that isn’t a pitch or demo, but a highlight of a star player– whether it be a non-profit partner or SOC leader, who has a tale to tell.
Apr 27, 2021   |  By ThreatQuotient
Joel Bork, Jonathan Couch, and Christian Galladora dive into the ThreatQuotient Threat Intelligence and Investigative Platform to uncover the technical details and features that exist!
Mar 24, 2021   |  By ThreatQuotient
Behind marketing buzzwords, product pitches, and business cycles, the complex cybersecurity market often forgets about the force that makes our world turn: the people that are embedded within it. That’s why we’ve created a livestream series that isn’t a pitch or demo, but a highlight of a star player– whether it be a non-profit partner or SOC leader, who has a tale to tell.
Feb 18, 2021   |  By ThreatQuotient
See how ThreatQ's normalized data accelerates multiple partner integrations and improves searchable threats automatically with Cisco SecureX.
Feb 4, 2021   |  By ThreatQuotient
The New Year is here - but what does the future hold for the world of cybersecurity and threat intelligence? Aylea Baldwin, Threat Intelligence Lead, Reddit Jonathan Couch, SVP Strategy, ThreatQuotient Justin Henkel, Director, Cyber Threat Intelligence, CME Group Kurtis Minder, Chief Executive Officer, GroupSense
Feb 1, 2021   |  By ThreatQuotient
[January 28, 2021] Check out ThreatQuotient's Anthony Stitt with online news channel Ticker TV. This interview explored the vital role employees play and how organisations can empower their employees in identifying and reporting cyber threats while also exploring the value of gathering internal threat intelligence within an organisation.
Jan 20, 2021   |  By ThreatQuotient
Cyber Threat Intelligence - Top Gun Style by Markus Auer, CTI Advisor and Regional Manager, ThreatQuotient
Mar 25, 2020   |  By ThreatQuotient
Find out the inspiration for building the ThreatQ Platform and how ThreatQuotient began by Co-Founders Ryan Trost and Wayne Chiang.
Jul 15, 2019   |  By ThreatQuotient
Incident response is an organized approach to the process by which an organization handles the aftermath of a cyberattack or data breach with the goal of limiting damage and reducing recovery time and cost. Take a quick look at how to use ThreatQ for incident response.
Jul 13, 2021   |  By ThreatQuotient
Organizations are steadily investing in and improving their security operations, leading to an unprecedented demand for security-related roles and skills. According to the U.S. Bureau of Labor Statistics, it is expected that information security analyst jobs will increase 31% from 2019 to 2029. With this, analysts are expected to be masters of the craft, or "all-around defenders." In this report, you will learn: Learn the skills security analysts need to master to make them successful by downloading the report.
Jul 13, 2021   |  By ThreatQuotient
The past year has been filled with changes to almost every aspect of daily life, and cyber threat intelligence (CTI) work did not go untouched. CTI is analyzed information about the capabilities, opportunities, and intent of adversaries conducting cyber operations. Adversaries tend to operate in and across digital networks and equipment that shape and impact businesses, critical infrastructure, and people's daily lives. Even with the difficulties that 2020 brought, CTI work has continued to grow and mature.
Jun 1, 2021   |  By ThreatQuotient
The Adversarial Tactics, Techniques & Common Knowledge (ATT&CK) project by MITRE is an initiative started in 2015 with the goal of providing a "globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. Since its inception, ATT&CK has taken the information security industry by storm. Many vendors and information security teams the world over have moved to adopt it with blinding speed-and for good reason: It is one of the most exciting, useful and needed efforts within InfoSec in recent memory.
Jun 1, 2021   |  By ThreatQuotient
In SANS' fifth yearly Threat Hunting Survey we examine how the cybersecurity industry is currently supporting threat hunting and how they are conducting threat hunting in their organizations.
May 1, 2021   |  By ThreatQuotient
Cyber Threat Intelligence (CTI) is analyzed information about the capabilities, opportunities and intent of adversaries that meets a specific requirement determined by a stakeholder. Organizations with CTI programs focus on understanding the threats they face and providing specific information to help defend against those threats. Key survey takeaways: Copyright © 2019, ThreatQuotient, Inc. All Rights Reserved.

ThreatQuotient’s mission is to improve the efficiency and effectiveness of security operations with a platform that accelerates and simplifies investigations and collaboration within and across teams and tools.

To understand and stop threats more effectively and efficiently your existing security infrastructure and people need to work smarter, not harder. ThreatQ can serve as an open and extensible threat intelligence platform that accelerates security operations through streamlined threat operations and management. The integrated, self-tuning threat library, adaptive workbench and open exchange allow you to quickly understand threats, make better decisions and accelerate detection and response.

More than a Threat Intelligence Platform:

  • Prioritize: Automatically score and prioritize internal and external threat intelligence based on your parameters.
  • Integrate: Improve effectiveness of existing infrastructure by integrating your tools, teams and workflows.
  • Automate: Automate aggregation, operationalization and use of threat intelligence across all systems and teams.
  • Collaborate: Centralize threat intelligence sharing, analysis and investigation in a threat intelligence platform all teams can access.

Prioritize, automate & collaborate with a platform purpose-built for Threat-Centric Security Operations.