BRI

Learn how our analysts' keen insights and Deep & Dark Web discoveries produce Business Risk Intelligence (BRI) to empower organizations to make informed decisions.

Blog > BRI > Business Risk Intelligence: Threat and Capabilities Matrix for Decision-Makers (Preview)

Business Risk Intelligence: Threat and Capabilities Matrix for Decision-Makers (Preview)

Jon Condra Headshot
Hacktivism

Yesterday we released our inaugural Business Risk Intelligence Decision Report. Unlike traditional end-of-year reports, we chose to eschew providing predictions for the coming year, which from our experience are overly generic and do not lend themselves to supporting informed decision-making.

Instead, the Flashpoint team looked back at 2016 and drew from our unique tools and data, as well as the varied talents and expertise of our analyst team, to identify the key trends in the current cyber threat and geopolitical environment and provide concrete examples of notable activity. This initiative began to paint a picture of an environment dominated by actors such as nation states (Five Eyes, Russia, China, Iran, and North Korea, in particular), as well as more amorphous actor sets such as disruptors/attention-seekers, cybercriminals, hacktivists, and jihadi hackers. All of these actor sets have varied ranges of motivations, capabilities, and thus potential impacts on targeted organizations. As such, it is critical for key decision-makers who are often divorced from the day-to-day happenings of the cyber domain to understand the landscape within which their business operates.

To aid in such efforts, we included a threat matrix that takes into account the above actors and their varied traits. Decision-makers can utilize this threat matrix to determine which types of threats are most significant for their organization and then allocate resources and personnel accordingly. I’ve provided a preview of the chart below, and the full view is available in the report.

bri_threatmatrix_obfuscated

One additional unique aspect of our Business Risk Intelligence Decision Report is the inclusion of what we call “Flashpoints.” In this section, we highlight specific geopolitical events that could take place in the year ahead, potentially causing a substantial shift in the cyber threat landscape. While these are not guaranteed to occur, and nor are they predictions of the future, decision-makers should understand that the geopolitical landscape contributes significantly to their own organization’s risk posture, and the eventualities that our analysts highlight are perhaps the most significant in the near-term.

Download the inaugural Business Risk Intelligence Decision Report.

About the author: Jon Condra

Jon Condra Headshot

Jon Condra serves as Director of Asia Pacific Research at Flashpoint. He joined the company in July 2014 from Versign iDefense. Aside from helping coordinate Flashpoint’s Subject Matter Experts and the delivery of intelligence products, Jon specializes in East Asian -- and in particular Chinese -- underground communities, including hacking, hacktivist, and cybercriminal communities. Jon speaks and reads Mandarin Chinese, and has a BA from Gettysburg College and an MA in Security Studies/Intelligence from Georgetown University.