Much like deep & dark web (DDW) coverage and anti-fraud solutions, request for intelligence (RFI) services have quickly become both ubiquitous and prone to misleading claims in the threat intelligence market. Most of these services aim to help customers fill intelligence gaps by enabling them to ask specific questions and receive curated answers from a vendor’s analyst team. But while their objectives, operating models, and marketing tend to be similar, it’s important to recognize that different services can vary widely in terms of quality and value.
Asking these questions when evaluating RFI services can help you identify the best option for your needs:
Does the RFI service complement other intelligence offerings?
RFI responses are often packaged as finished intelligence reports, but they should never be the only type of intelligence you consume. The vendor should also provide its customers with regular intelligence reporting on a diverse assortment of topics that are timely, relevant to, and may even help shape your intelligence requirements (IRs). Contextualized alerts, regional and industry-specific studies, malware analysis, threat actor profiles, daily highlight summaries, and news flashes are among the many types of reporting, in addition to RFI responses, that are essential for a threat intelligence program.
And such reporting should occur frequently—daily or more often, if necessary, is ideal. Since the types of threats and adversaries on which many threat intelligence programs focus their IRs can be unpredictable and dangerous, new discoveries and developments warranting your attention can arise often and in abundance. Routinely consuming intelligence related to these and similar threats, adversaries, and the volatile environments in whic ..
Support the originator by clicking the read the rest link below.
