In today’s evolving cyber threat landscape, security intelligence is extremely critical in establishing an effective security program. Having threat intelligence allows organizations to "know the enemy”, to assess their risks, and implement effective countermeasures. On paper the concept is simple, but organizations continue to work to put the theory into practice. In some cases, they struggle to deploy the resources needed to collect and analyze the massive amounts of data required to generate threat insights. Others bypass that issue by leveraging a commercial intelligence service; however, they ponder how to extract insights from a source that may contain useful sector insight, but lack information specific to the organization’s unique environment.
Symantec can help. Our DeepSight Intelligence services provide the context you need by combining our telemetry from Symantec’s Global Intelligence Network with a rigorous analysis by our DeepSight Intelligence team. We show the full picture of the threat—from the adversary, to their tactics, to the victimology.
DeepSight Intelligence gives broad visibility to global and industry specific threats; however, sometimes urgency and the amorphic nature of threats leave security operations without any results from intelligence sources. For those cases, Directed Threat Research provides an on-demand service to answer companies’ specific intelligence questions.
![Symantec_IntelligenceDefense_Twitter[6].png](http://www.symantec.com//connect/sites/default/files/users/user-2967561/Symantec_IntelligenceDefense_Twitter%5B6%5D.png)
Directed Threat Research – DeepSight’s latest evolution and expansion
Directed Threat Research is part of Symantec’s DeepSight Intelligence and Managed Adversary and Threat Intelligence (MATI), our cyber threat intelligence subscription.
Directed Threat Research delivers:
- Tailored reports to address an enterprise’s specific questions and needs
- Access to a highly experienced Symantec team of intelligence analysts
- Insights gathered from the Symantec Global Intelligence Network
- Ability to predict the lifecycle of threats (early warnings) based on monitoring
- Strategic and tactical intelligence to support executives, threat analysts, and network defenders
How Directed Threat Research works for DeepSight customers
Organizations may have a question on a specific adversary or a campaign. Requests are submitted, and customized reports are returned in a trackable, scalable manner through the Directed Threat Research tab on the DeepSight customer portal.
Armed with a tailored Directed Threat Research report, organizations can patch the holes left by other intelligence sources and provide detailed answers to executive teams, such as “by whom and why” the organization was attacked.
Organizations have unique threat intelligence needs
Not all threat intelligence is equal. Context is critical in allowing organizations to apply threat intelligence towards risks in their network. More important, however, is that your intelligence vendor is able to provide context on the threats you care about to help answer specific questions. For example: Was your organization the only target? Who is behind the attacks? What are the attackers’ motivations and intent? Is this part of a larger campaign?
Organizations who know their adversaries, while being aware of their own strengths and vulnerabilities, stand a better chance in the ongoing cybersecurity war. As the threat landscape evolves, Symantec DeepSight Intelligence also evolves and adapts to give customers the edge over their adversaries.