CTIS is the Australian Cyber Security Centre’s (ACSC’s) threat information sharing platform that went live in late 2021. CTIS establishes a national community of organisations that share cyber threat intelligence bi-directionally, at machine speed. Participating organisations include federal and state government agencies and private sector organisations across multiple industry sectors. Ongoing interest from organisations wanting to join CTIS is significant and the community is growing rapidly.

In this address Darryl Shields from ACSC will explain what the CTIS program is, how it is helping improve cyber resilience across our shared national ecosystem, and the role that government and private sector organisations can and should play in this.

The address will also explain how CTIS can play a critical role in the context of other security imperatives such as CISONS and supply chain assurance.

Prescott Pym will then walk you through what it means practically to integrate CTIS feeds into your SOC. This includes how you might integrate CTIS into common tools such as Threat Intelligence Platforms, SIEM and SOAR, based on lessons learnt from the CTIS program, and how to use these platforms to contribute CTI back into the ecosystem.

CTIS provides significant opportunity for all participating organisations to improve cyber resilience. The more the community grows and the more locally relevant CTI is shared back into the CTIS ecosystem, the greater resilience we can have across our Australian national economy.

During this session you will learn what the ACSC’s Cyber Threat Intelligence Sharing (CTIS) service is, and what value it can bring to organisations in particular, and to our shared national cyber resilience, in general. You will learn how your organisation can connect to CTIS, and how to integrate CTIS intelligence feeds into your SOC infrastructure.