Cyware Allows ISAC and ISAO Members to Approve Intel Before Sharing Ahead

Cyware Situational Awareness Platform (CSAP) version 2.3 now allows organizations to create a new role of Intel Approver to identify and validate sensitive threat intelligence before sharing it with their ISACs. The feature simplifies the threat intelligence sharing and review process adopted by the sharing communities such as ISACs and ISAOs where a large volume of intel is shared on a daily basis.

How does the feature work?

• ISAC/ISAO administrators can assign the role of Intel Approvers to one or two users of a Member Organization.
• Intel Approvers can leverage the Intel Approval workflow to review and approve threat intelligence shared by users within their organization.

**How does the approval process work? **

• The Intel Approval Workflow comprises of different queues such as Submitted, Approved, Rejected, and Reverted where approvers can view the status of submitted intel based on action taken.

• Intel Approvers can lock and reserve the intel for review by clicking on the “Review Intel” button.

• Once a submitted intel is approved by the organization's Intel Approver, it is shared with the ISAC or ISAO Analysts for further action-taking.

• The Intel Approver can also reject or revert the intel. The reverted intel can be re-submitted by the member for approval after making the necessary changes.

The bottom line

Managing threat intelligence within large sharing communities is no longer a challenging task. With the new Intel Approver feature, ISAC and ISAO member organizations can enhance the overall actionability and threat intelligence participation rate.