Request for Information (RFI)
The Request for Information (RFI) is the process of gathering relevant and contextual information on threats while partnering to drive enhanced collaboration and knowledge building. Members who need information on any incident, malware, vulnerability, or threat actor for any security decision-making or actioning can raise RFI requests. Members can use this as a formal process to gather information.
For example, when a user requests an RFI to get more information about a malware attack that needs quick action, the analyst approves the request and enables collaboration within security teams. All the members can include their insights and thoughts in responses to add context. The user has all the information and can take the right action to mitigate the threat.
RFIs are useful to analysts and members in the following ways:
Analysts can create alerts directly from the RFIs submitted by members.
Members can interact in real time using comments to deliver actionable, relevant, and contextual information. All the responses received from the RFI are available to members and help in the final assessment of the inquiry.