Skip to content

Security Intelligence – The Next Big Thing

In 2010 Gartner espoused that applied security (Signals) intelligence was no longer an option for companies.

I called the analyst on this not because I thought he was wrong, on the contrary, because I thought they should swing for the fences a little bit more readily!

Signals intelligence is a great and useful tool if you can get it with valid and clean data; that’s a big if given the lack of ‘connectedness' between all of the logs in an organization and the difficulty in processing all this information without having your own Intel team.

My point to Gartner was more that Signals Intel is only half of the mystery; the other component for corporations is Human Intel.

Now, many of my contemporaries will no doubt argue that companies can’t afford security intelligence teams, much less ‘Humint’ programs. I am here to tell you its time you all stepped up to the big table and starting prioritizing threats.

If you can accurately identify which threats are really risks for your organization you can do a few important things:

  • Optimize security spend to those things that are truly highest risk
  • Aid the business in acting boldly in decision making in areas where the risk is actually lower or in areas where security investment is high.
  • Make security a strategic competitive advantage for your firm
  • Create real executive briefing information in terms of what it means to your company, not just explain what CNN said last night

Only when you combine Signals and Human Intel over a sustained period of time, can you really begin to be sure when answering leadership’s question…How do you know we are spending our money on the right things?

Dave Tyson

Dave Tyson is the Managing Partner of CISO Insights Cyber Security Risk Advisory. Tyson has served as CISO and security leader at organizations including SC Johnson, Nike, PG&E, eBay, and as chairman and president of ASIS. Contact:, (408) 464-5310.

Leave a Comment

Ready to Get Started?

Click on the button below to take the first step towards securing your organization against cyber security threats.

Preparation for Next Crisis

Top 10 Ways to be Better Prepared for the Next Crisis

Dave Tyson | Posted in Risk Management

If we can say nothing else about this crisis, it has been a paradigm shifting moment for most of us. Just about everything we thought we knew about what “normal” life is, has been disrupted and tested for strength. In many cases we have embraced the be…

Read more

Looking Forward

Dave Tyson | Posted in Risk Management

The news for security from the 2020 World Economic Forum Risks Report is really a simple as it gets, the 4th industrial revolution (4IR) is upon us, and the opportunities and benefits for the world are amazing and here to stay. The report indicates tha…

Read more

To Zoom or not to Zoom

Dave Tyson | Posted in Vendor Security

Zoom, and products like it, are fantastic tools, and any digital tools like these is an ecosystem unto itself, and with the right rules and governance, the risk can be managed. Read this post to better understand how to managed that risk.

Read more

Scroll To Top