In a recent development sponsored by Intel 471, a group of 28 industry leaders has come together to launch the first version of the Cyber Threat Intelligence Capability Maturity Model (CTI-CMM). This initiative aims to provide a universal resource that supports organizations of all types and sizes in the cyber threat intelligence industry. The CTI-CMM is designed as a vendor-agnostic tool to help organizations build mature cyber threat intelligence programs that align with their core objectives and key outcomes.
Michael DeBolt, Chief Intelligence Officer at Intel 471, emphasized the importance of aligning CTI programs with the capabilities of stakeholders and measuring success in accordance with organizational priorities. He stated that the CTI-CMM aims to guide CTI teams in enhancing their capabilities by aligning with specific practices tailored to each organization’s unique business domains. The Model establishes shared values and principles to enable organizations to take a comprehensive approach to cyber threat intelligence with a focus on stakeholders.
Colin Connor, CTI Services Manager at IBM X-Force, highlighted the need for an outcome-focused model for cyber intelligence programs and praised the CTI-CMM for bridging the gap and creating demonstrable value for organizations globally.
The team behind the CTI-CMM is a diverse group of professionals from various sectors and regions, including companies like Intel 471, IBM, Kroger, Venation, Mandiant, and Autodesk, among others. Their collective expertise and experience have been pivotal in defining the shared values and principles that underpin the CTI-CMM.
The shared values of the CTI-CMM emphasize collaboration with stakeholders, continuous improvement, and the non-proprietary nature of intelligence. These values are meant to guide organizations in creating impactful and actionable intelligence programs.
The shared principles of the CTI-CMM focus on contextualizing threat intelligence within risk, continuous self-assessment, actionable intelligence based on stakeholder needs, and collaborative intelligence processes. These principles are intended to drive effective intelligence practices within organizations.
The CTI-CMM is aligned with industry best practices and draws inspiration from the Cybersecurity Capability Maturity Model (C2M2). Like the C2M2, the CTI-CMM is organized into ten domains, each with a specific purpose and mission related to CTI functions, use cases, and data sources.
Overall, the CTI-CMM serves as a blueprint for successful CTI programs and aims to support organizations in making informed decisions to protect against cyber threats. To learn more about the CTI-CMM, visit https://cti-cmm.org/.
Intel 471 is a leading provider of cyber intelligence-driven solutions that empower organizations to combat cybersecurity threats effectively. Their platform offers real-time insights into adversaries, threat patterns, and imminent attacks, enabling customers to proactively neutralize threats and mitigate risks. With a focus on practitioner engagement and global expertise, Intel 471 helps organizations navigate the evolving landscape of cyber threats and emerge victorious. Learn more about Intel 471 at https://intel471.com/.