How Cytidel can help businesses meet the new ISO 27001:2022 Threat Intelligence requirement
In 2022, ISO 27001 was updated to include 11 new controls, one of which is A.5.7, Threat Intelligence. Read our report on what’s changed and how Cytidel can help businesses meet the new ISO 27001:2022 requirement for threat intelligence.
CYTIDEL RECON: VULNERABILITY THREAT INTELLIGENCE
Save 10+ hours a week on vulnerability research with Cytidel RECON
Real-time vulnerability data including the latest data on advisories, exploits, news, social media.
TRENDING VULNERABILITIES
Take action even before a CVE is published to NVD.
Quickly view CVEs with trending activity, enabling your team to see any CVEs with associated advisories, news or social posts long before they are published to NVD.
ADVANCED VULNERABILITY INTELLIGENCE DATABASE
Consolidated vulnerability data from over 200 sources.
Move beyond CVSS, EPSS and CISA KEV. See each CVE’s trending data across advisories, news and social. Plus, the latest exploit and POC data.
CYTIDEL SPOTLIGHT
Weekly vulnerability spotlight with analysis and remediation steps.
Each week, the top rising threats are added to the ‘Cytidel Spotlight’, along with detailed analysis and remediation steps from the Cytidel CTI team.
PATCH TUESDAY
Next-day Patch Tuesday analysis delivered to your inbox
Save time and resources every month. Get our Patch Tuesday report the very next day to get a head start on any critical items.
What our customers say
“Working with Cytidel has helped the Carne Group rank and prioritise what to do next in improving our security controls and posture. Cytidel are professional and expert in how they help build effective security controls and programs. They are passionate about information security, and it shows in the effective work they do.”
Eoin Oh’Eochaidh
Chief Information Security Officer (CISO) at Carne Group
CASE STUDY: CYTIDEL CTI TEAM
Growing our vulnerability database and automation capabilities to save Cytidel CTI Analysts 20+ hours a week
OUR JOURNEY
-
We started with EPSS, CVSS & Asset Location with our first attempt at moving beyond CVSS for prioritisation.
​
-
Hired a dedicated CTI team to identify trends across news, social and advisories.
​
-
Began automating our CTI processes for identifying CVE trends and prioritising vulnerabilities.
​
-
Built our own scanners to aggregate news, social and advisories mentions for CVEs for past 24 hours, 48 hours, 7 days and 30 days.
​
-
Added layers to our CVE Data by integrating CISA KEV, Exploit data & POC data.
RESULTS IN YEAR 2
-
We save approx 20 hours a week for each analyst researching CVE trends.
​
-
We can bulk analyse CVEs against latest intelligence with rapid prioritisation, achieving 95% improved efficiency vs CVSS prioritisation.
​
-
In one week, identified 100+ non-NVD CVEs that had trending activity.