A Systematic Literature Review on Cyber Threat Intelligence for Organizational Cybersecurity Resilience-Reference-Cited by-同舟云学术

A Systematic Literature Review on Cyber Threat Intelligence for Organizational Cybersecurity Resilience

Published:2023-08-19 Issue:16 Volume:23 Page:7273
ISSN:1424-8220
Container-title:Sensors
language:en
Short-container-title:Sensors

Author:

Saeed Saqib¹^ORCID,Suayyid Sarah A.²,Al-Ghamdi Manal S.²^ORCID,Al-Muhaisen Hayfa²,Almuhaideb Abdullah M.³^ORCID

Affiliation:

1. SAUDI ARAMCO Cybersecurity Chair, Department of Computer Information Systems, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia

2. Department of Computer Information Systems, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia

3. SAUDI ARAMCO Cybersecurity Chair, Department of Networks and Communications, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia

Abstract

Cybersecurity is a significant concern for businesses worldwide, as cybercriminals target business data and system resources. Cyber threat intelligence (CTI) enhances organizational cybersecurity resilience by obtaining, processing, evaluating, and disseminating information about potential risks and opportunities inside the cyber domain. This research investigates how companies can employ CTI to improve their precautionary measures against security breaches. The study follows a systematic review methodology, including selecting primary studies based on specific criteria and quality valuation of the selected papers. As a result, a comprehensive framework is proposed for implementing CTI in organizations. The proposed framework is comprised of a knowledge base, detection models, and visualization dashboards. The detection model layer consists of behavior-based, signature-based, and anomaly-based detection. In contrast, the knowledge base layer contains information resources on possible threats, vulnerabilities, and dangers to key assets. The visualization dashboard layer provides an overview of key metrics related to cyber threats, such as an organizational risk meter, the number of attacks detected, types of attacks, and their severity level. This relevant systematic study also provides insight for future studies, such as how organizations can tailor their approach to their needs and resources to facilitate more effective collaboration between stakeholders while navigating legal/regulatory constraints related to information sharing.

Funder

Saudi Aramco Cybersecurity Chair, Imam Abdulrahman Bin Faisal University

Publisher

MDPI AG

Subject

Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry

Link

https://www.mdpi.com/1424-8220/23/16/7273/pdf

Reference72 articles.

1. Lenka, A., Goswami, M., Singh, H., and Baskaran, H. (2023). Effective Cybersecurity Operations for Enterprise-Wide Systems, IGI Global.

2. Adopting and integrating cyber-threat intelligence in a commercial organisation;Kotsias;Eur. J. Inf. Syst.,2023

3. Gately, H. (2023). Russian Organised Crime and Ransomware as a Service: State Cultivated Cybercrime. [Doctoral Dissertation, Macquarie University].

4. CTI–issue and challenges;Abu;Indones. J. Electr. Eng. Comput. Sci.,2018

5. Information security risk management: An intelligence-driven approach;Webb;Australas. J. Inf. Syst.,2014

Cited by 18 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Evolving techniques in cyber threat hunting: A systematic review;Journal of Network and Computer Applications;2024-12

2. Generative AI for Threat Hunting and Behaviour Analysis;Advances in Digital Crime, Forensics, and Cyber Terrorism;2024-09-13

3. AI-Driven Threat Detection and Response Systems for Secure National Infrastructure Networks: A Comprehensive Review;International Journal of Latest Technology in Engineering Management & Applied Science;2024-08-05

4. Knowledge Graphs and Semantic Web Tools in Cyber Threat Intelligence: A Systematic Literature Review;Journal of Cybersecurity and Privacy;2024-08-01

5. Artificial intelligence an essential factor for the benefit of companies: systematic review of the literature;Cogent Engineering;2024-07-21