Cyber Security Decision Making Informed by Cyber Threat Intelligence (CYDETI)

As organisations around the world are embracing digitalisation to facilitate their business operations, their digital footprint is drawing the attention of adversaries and cyber activists. This is forcing the boards of organisations to engage actively in the cyber security decision making of the organisation. However, the boards themselves face the challenges of understanding the organisational threat landscape whilst also considering business continuity in terms of cyber security investment and decision trade-offs. This paper addresses these challenges by proposing a cyber security decision-making informed by cyber threat intelligence (CYDETI) framework. The CYDETI framework utilises cyber threat intelligence (CTI) and risk management taxonomies to inform decision making. The novel aspect of the framework is that it feeds CTI from the technical level to the operational level and ultimately to the strategic level. Furthermore, a planned scenario implementation and future studies are envisioned with leading industrial organisations.