Threat intelligence. You keep using that term. I'm not sure it means what you think it means. Plagued by meaningless generalized URLs and file hashes was supposed to be the role of AVs and proxies, how it came about that threat intelligence vendors keep providing those? Actionable threat intelligence is the rainbow burping unicorn of infosec where such provided intelligence is actually useful for the specific organization. In this talk we'll discuss about SOME of the way that this can be achieved and utilized in a risk management program.