From the course: CISSP Cert Prep (2021): 3 Security Architecture and Engineering
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Automating threat intelligence
From the course: CISSP Cert Prep (2021): 3 Security Architecture and Engineering
Automating threat intelligence
- [Instructor] Threat intelligence is one of the areas where automation can provide tremendous benefits. Let's take a look at a few examples. One of the most useful security automations that an organization can easily adopt is the automated blacklisting of IP addresses reported by threat intelligence services as the source of malicious activity. These threat intelligence services often include a direct feed of IP addresses that's updated in real time as malicious activity is detected across their clients' networks. These threat feeds are designed for direct integration with firewalls, intrusion prevention systems, routers, and other devices with the capability of automatically blocking traffic. Technologists are often worried about deploying any tool that automatically blocks traffic, and this is a legitimate operational concern. For this reason, organizations considering this automation should first deploy the…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.