Mandiant is a companies whose business centers around digital forensics and incident response as well as cyber threat intelligence. The company recently released a CTI analyst core competencies framework to answer a question they often get from their customers: What is the optimal team composition for starting and maturing a CTI capability inside their corporate environment?
Mandiant’s framework groups competencies into four foundational pillars (Figure A). Those can be used to identify weaknesses in an already built CTI team, identify areas for team or individual growth or determine an efficient roadmap for your cybersecurity team.
Pillar 1: Problem solving
Critical thinking
In CTI, critical thinking is necessary to handle information to conceptualize, identify, evaluate and synthesize it. Once done, the analyst should be able to formulate unbiased judgements, analytic lines and relevant recommendations for every case.
Read more here