Cyberintelligence lapses in many orgs due to time, personnel, and funding shortages, study finds

PITTSBURGH. Many organizations lack sufficient personnel, time, and funding to build a cyberintelligence team, according to the findings in a report on cyberintelligence practices released by the Software Engineering Institute (SEI) at Carnegie Mellon University.

The SEI -- a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University -- conducted the study on behalf of the U.S. Office of the Director of National Intelligence (ODNI).

The study authors found that definitions for cybersecurity and cyberintelligence vary widely and are often misunderstood as the same thing, which can lead to confusion of effort and organizational vulnerability. In addition, the study revealed that organizations often struggle to identify the location of confidential and intellectual-property data due to information silos within the organization.

The study did recommend several courses of action for organizations looking to strengthen their cyberintelligence missions: One, organizations should leverage NIST NICE SP 800-181 (the National Institute of Standards and Technology [NIST] framework) as a starting point to create a cyberintelligence team; next, that humans and machines need to team up to manage the exponential increase in the amount of data generated; and that organizations should consider using security orchestration, automation, and response (SOAR) technologies as a force multiplier for threat analysis and cybersecurity tasks.

For additional information on the study, please visit the SEI website.