CYBER THREAT INTELLIGENCE AS A NEW PHENOMENON: LEGAL ASPECT

Abstract

The study gives definitions of cyber threat intelligence and related terms, such as cyber threat, information security, cybersecurity, and others, indicating the purposes, objects, and subjects of the concepts mentioned. The author correspondingly considers the features of the organization of cyber threat intelligence in Ukraine, its types and levels, bodies to operate in the sphere under consideration and identifies their key functions. The studies of Ukrainian and foreign scientists who researched certain aspects of cyber threat intelligence and cybersecurity were analyzed, based on their views practical conclusions were drawn and the conceptual ground of the paper was composed. Separately, the characteristics of the main types of cyber threats in nowadays cyberspace are given, methods for solving the problems arising in this field are introduced, and ways of ensuring the appropriate condition of cybersecurity of the state are marked. Additionally, the concept and features of cyber threat hunting as part of the cyber threat intelligence process were studied as part of the cyber threat intelligence process. Cyber threat intelligence in this scientific research is considered from the point of view of two approaches – as an analytical activity and as an activity of special authorities. Furthermore, the author analyzed the existing regulatory and legal instruments regulating different aspects of the phenomenon under consideration in the USA and Ukraine. The author pointed out the deficiencies of such regulations and provided recommendations for their further improvement. Correspondingly, suggestions are given to develop and improve the national cyber defense system of the country.