Configure Threat Levels
Analysts can configure and use threat levels to indicate the current level of malicious cyber activity and reflect the potential/actual damage caused by the threats. Threat levels are determined and communicated to members based on the specific organization's security requirements.
Security teams can determine and update threat levels based on various parameters such as likely damage due to the threat, the targets of the threat, preventive measures that are in place, and other crucial data such as the lethality and criticality of a threat.
Threat levels can be customized for a specific organization's security requirements. This information is displayed to members on the Member Portal.
Threat levels include:
Threat Type - Analysts can map Threat Types to appropriate Threat Levels to display them in the CSAP Member Portal.
Threat Level - Analysts can map Threat Types to appropriate Threat Levels to display them in the CSAP Member Portal.
Threat Criteria - Analysts can map Threat Criteria to appropriate Threat Levels to display them in the CSAP Analyst Portal.
Help Text - Analysts can provide a description of the Threat Level indicator to members. Members can view the help text by clicking on the “?” icon from the Threat Level indicator slider in the CSAP Member Portal.
Create Threat Level Mapping
Map the threat criteria, level, and types to create a threat level mapping that will be displayed to members on the Member Portal.
The threat levels, types, and criteria can be used to create a bulletin of information that the member can use as a reference.
Before you Start
You must have the View and Create/Update permissions to access Threats Levels. Permissions can only be assigned to a role.
You must have created the Criteria, Levels, and Types from Settings. See Threat Levels.
Steps
From Main Menu, select Threat Levels.
Click New.
Select the Threat Type, Threat Level, and Threat Level Criteria.
The threat type can be, Classified Information breach, Critical Intel Sharing, Phishing Attacks, and so on.
The threat level can be high, low, medium, critical, elevated, and so on.
The threat level criteria can be classified information, and so on.
Enter the last changed and the last reviewed dates so that members can understand when the information was released and updated.
Click Active to use this mapping.
Click Save.