Threat Intelligence

What Does Threat Intelligence Mean?

Threat intelligence is the analysis of internal and external threats to an organization in a systematic way. The treats that threat intelligence attempts to defend against include zero-day threats, exploits and advanced persistent threats (APTs). Threat intelligence involves in-depth analysis of both internal and external threats.


Threat intelligence is also known as cyber threat intelligence (CTI).

Techopedia Explains Threat Intelligence

Threat intelligence is the in-depth analysis of potential computer and network security threats to an organization. As with military intelligence, the goal is to get as much information as possible about threats so that a company can take proper action against them. The term implies anticipating and defending against attacks rather than just reacting with incident management techniques.

Threat intelligence can examine threats facing one organization or it can cast an even wider net, involving the cooperation of other firms. The Retail Cyber Intelligence Sharing Center (R-CISC) is one group that involves security professionals at different companies coming together to share information on threats. As attacks become more sophisticated, professionals working to minimize threats must collaborate with each other.


Related Terms

Margaret Rouse

Margaret is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages.