Threat Intelligence is a priority for IT professionals inEgypt
Khadamaty New
Cybersecurity teams today face increasingly sophisticated attacks powered by artificial intelligence, automation, and advanced persistent threats (APTs), making traditional reactive security measures insufficient. To effectively counter these evolving dangers, organizations must adopt a proactive approach that leverages threat intelligence (TI). By anticipating potential threats, detecting malicious activities early, and mitigating risks before they escalate, businesses can strengthen their defenses and maintain resilience in a rapidly changing environment. This shift from reactive to proactive security strategies is essential for staying ahead of cybercriminals and safeguarding critical assets.
In its recent study, Kaspersky surveyed IT professionals across industries and regions to understand how businesses use threat intelligence to bolster their defenses. The findings reveal that while an overwhelming majority (75%) of organizations in Egypt are satisfied with their available threat intelligence, there is still significant room for improvement – particularly in integration, speed, and relevance.
The critical role of threat intelligence
Threat intelligence goes beyond data collection, it provides actionable insights into adversary tactics, techniques and procedures (TTPs). By studying attacker behavior, security teams can detect threats earlier, refine defensive strategies and respond more effectively both during and after incidents. The study highlights that less than half of companies in Egypt (23%) rely on specialized TI vendors for curated intelligence, while close to a third (38%) engage in threat data exchanges with other organizations. Another 38% gather intelligence from open sources, demonstrating the widespread recognition of TI’s value.
The importance of TI in cybersecurity cannot be overstated, as it helps organizations stay ahead of evolving threats and adapt their defenses accordingly. It enables proactive risk management and enhances the ability to anticipate potential attacks before they occur. The most effective threat intelligence must be timely, reflecting the latest threats, a priority for 40% of respondents in the META region. It must also be actionable, seamlessly integrating into security workflows, which is a key concern for 40% of professionals. Additionally, 36% of respondents emphasized the need for better analysis, including prioritization and de-duplication, to make intelligence truly usable in real-world scenarios.
Key areas for improvement
