top of page

Episode #

59

S&P Global’s Eric Hanselman on Integrating Threat Intelligence into Business Strategy





Show Notes

In our latest episode of the Future of Threat Intelligence podcast, David speaks with Eric Hanselman, Chief Analyst at S&P Global, about the critical role of threat intelligence in today’s cybersecurity landscape. Eric emphasizes the need for organizations to integrate threat intelligence operationally, moving beyond mere threat feeds to develop comprehensive threat models.


He discusses the importance of maintaining operational hygiene, building a peer ecosystem for information sharing, and aligning security strategies with overall business objectives. Eric also offers valuable insights on navigating the complexities of cybersecurity and the future of threat intelligence.


Topics discussed:

  • Insights on the evolving role of threat intelligence in modern cybersecurity strategies and operations.

  • How organizations must integrate threat intelligence operationally to effectively manage risks and inform day-to-day security decisions.

  • Why simply having a threat feed is insufficient; understanding and updating threat models is crucial for effective risk management.

  • How operational hygiene, including good backups and data protection, is essential for defending against ransomware and other cyber threats.

  • The value of building a community for information sharing enhances collaboration and provides valuable reality checks among cybersecurity professionals.

  • Aligning security strategies with business objectives ensures that security measures support overall organizational goals and operations.

  • Looking ahead and maintaining a forward-thinking perspective is vital for anticipating future cybersecurity challenges and opportunities.

Key Takeaways:

  • Integrate threat intelligence into daily operations to enhance your organization’s ability to respond to emerging cybersecurity threats.

  • Develop comprehensive threat models that are regularly updated to reflect the evolving risk landscape and inform strategic decisions.

  • Prioritize operational hygiene by ensuring robust data protection measures and effective backup systems to mitigate ransomware risks.

  • Build a network of cybersecurity peers for information sharing to gain insights and reality checks on current security practices.

  • Align your security strategies with business objectives to ensure that cybersecurity efforts support overall organizational goals and operations.

  • Stay informed about emerging technologies, such as GenAI, and assess their potential impact on your security posture.

  • Engage in end-user research to understand the pain points of security teams and develop solutions that address their challenges.

  • Look beyond immediate threats and focus on long-term strategic planning to anticipate future cybersecurity challenges.

  • Foster a culture of collaboration within your organization to enhance communication between security teams and other business units.

  • Regularly evaluate and refine your security practices to ensure they remain effective in the face of evolving threats and technologies.

Quotes from Episode

#1.) “The nuts and bolts are really just keeping an eye on what's going on, both from a technology perspective, a threat landscape perspective, as well as the vendor landscape. One of the biggest things that we do to help our clients is help them understand what this all looks like and make sense. We basically taking an objective view to be able to take a big step back and look at what's out there and maybe look a little farther, look a little broader, to get up and above sort of the day-to-day tactical pieces.” 3:13-3:46


#2.) “A lot of folks were working to replicate what they did on-prem and cloud. The same things happen with GenAI. How do we wrap something around GenAI to put some protections around that? You need to think about how you're actually going to put it to work and practically how you're going to make that happen. And that's, I think, one of the bigger challenges.” 14:59-15:19

bottom of page