Threat intelligence and Security Operations have a symbiotic relationship: each improves when they interact with the other. When intelligence drives or supports security operations, you can prioritize events and reduce the time it takes to triage alerts and more rapidly perform investigations, effectively reducing MTTD and MTTR. In this talk, Chris highlights the challenges faced by threat intelligence and SecOps/IR teams, shows how an intelligence-driven SOAR can solve those challenges with Use Case examples and talks to the outcomes security teams should expect.
