A lot of progress has been made in the past few years around requirements.
Next steps in this area include identifying when and why to update intelligence
requirements—even ad hoc adjustments can be planned for by identifying
the circumstances under which they would need to be changed. It is also
clear that there are numerous positive trends in the community, such as more
organizations producing intelligence instead of just consuming it. But there are
also many challenges, such as getting the appropriate staffing and training to
conduct cyber threat intelligence. Tools and data sources are always going to be
vital to the process, but the world of intelligence analysis is inherently analyst driven and a focus is rightfully placed there.
(more available)