I’m thrilled to sit down with Dominic Jainy, an IT professional whose deep expertise in artificial intelligence, machine learning, and blockchain has positioned him as a thought leader in the evolving landscape of cybersecurity. With a keen interest in how emerging technologies can transform industries, Dominic brings a unique perspective to the critical topic of threat intelligence. Today, we’ll explore the latest trends in how organizations are leveraging threat intelligence, the challenges they face, and the future of investment and maturity in this space, drawing from insights in the 2025 State of Threat Intelligence Report.
Can you give us a broad picture of the major insights from the 2025 State of Threat Intelligence Report and what they reveal about the current cybersecurity landscape?
Absolutely. The 2025 report paints a clear picture of a cybersecurity community that’s increasingly recognizing the value of threat intelligence. It surveyed over 600 professionals and found that adoption and investment are significantly up. What’s striking is how threat intelligence is no longer just a tactical tool but a strategic asset—organizations are using it for high-level planning and decision-making. It also highlights a growing maturity in programs, with many companies now having dedicated teams and advanced systems in place, though challenges like vendor integration persist. Overall, it shows a field that’s evolving rapidly to keep pace with sophisticated threats.
What surprised you most about how organizations are utilizing threat intelligence in today’s environment?
I was particularly struck by how deeply threat intelligence is being embedded into strategic planning. It’s not just about reacting to threats anymore; companies are using these insights to guide big-picture decisions like technology investments and risk management. The fact that it’s becoming a regular part of boardroom discussions signals a shift—security isn’t just an IT issue, it’s a business priority. This broader application shows how much the perception of threat intelligence has matured.
How has the adoption rate of threat intelligence shifted when you compare it to past years?
There’s been a noticeable uptick in adoption over the years, and the report underscores this with hard numbers. A vast majority of organizations—around 89%—are now paying for at least one threat intelligence vendor, which is a significant jump from earlier trends. This reflects a growing consensus that proactive intelligence isn’t optional anymore; it’s a necessity to stay ahead of adversaries who are constantly innovating their tactics. The commitment to full-time teams, with 83% of companies having them, further illustrates this shift toward mainstream acceptance.
The report notes a rise in full-time threat intelligence teams. Can you unpack why this trend is gaining traction?
Having a dedicated team is becoming essential as cyber threats grow in complexity and volume. The report shows that 83% of surveyed companies now have full-time staff focused solely on threat intelligence. This is significant because it indicates a move away from ad-hoc approaches to a more structured, proactive stance. These teams can focus on analyzing data, contextualizing threats, and integrating intelligence into broader security strategies, which ultimately strengthens an organization’s ability to anticipate and respond to incidents before they escalate.
Let’s talk about the financial side. How would you describe the current trends in spending on threat intelligence?
Investment is definitely on the rise, and the numbers are telling. According to the report, 76% of organizations are spending at least $250,000 annually on external threat intelligence products, and a notable 14% are pouring in over $1 million each year. This reflects a recognition of the high stakes involved—cyberattacks can cost far more than these investments if they succeed. The spending also varies by company size, with larger enterprises often allocating bigger budgets due to their broader attack surfaces, while smaller firms are still investing but at a more modest scale.
How are organizations using threat intelligence to shape strategic business decisions?
Threat intelligence is increasingly guiding critical business choices, far beyond just IT security. Companies are leveraging it to inform technology purchases, ensuring they invest in tools that address the most pressing risks. It’s also used in risk assessments to allocate resources effectively and even in deciding how to navigate regulatory landscapes. When this data reaches executive and board-level discussions, it shapes overarching strategies—whether to expand into certain markets or double down on specific defenses. It’s a powerful way to align security with business goals.
There seem to be some pain points with threat intelligence vendors. Can you shed light on the integration challenges many organizations face?
Integration is a big hurdle, with nearly half of the respondents—48%—struggling to mesh vendor solutions with their existing security tools. This often comes down to compatibility issues or a lack of customization in vendor offerings. Many security environments are complex, with a mix of legacy and modern systems, and vendors sometimes fail to provide seamless plug-and-play solutions. This friction can delay the actionable use of intelligence, which is frustrating when speed is critical in responding to threats.
What are some of the concerns around the trustworthiness of these vendors, and how widespread are they?
Trust is a significant issue, with 50% of respondents expressing doubts about their vendors’ reliability. This stems from concerns about data accuracy, transparency in how intelligence is sourced, and whether vendors can truly protect sensitive information. There’s also a fear of over-reliance on external parties—if a vendor’s data is flawed or compromised, it could mislead an entire security strategy. These concerns are pretty widespread, cutting across industries, and they highlight the need for rigorous vetting and clear communication from providers.
Despite these hurdles, threat intelligence programs are reportedly maturing. What does this maturity look like in practical terms?
Maturity in this context means moving toward a more sophisticated, integrated approach. About 49% of respondents now rate their programs as “advanced,” up from last year. This looks like blending insights from multiple intelligence sources for a holistic view, automating workflows to embed intelligence into various security processes, and having dedicated staff who can focus on proactive threat hunting and strategic analysis. It’s about turning raw data into actionable prevention, often automatically, which marks a big leap from earlier, more reactive models.
Looking ahead, what is your forecast for the future of threat intelligence programs over the next few years?
I’m optimistic about the trajectory of threat intelligence. With 91% of organizations planning to increase investment and 87% expecting significant evolution in their programs over the next two years, we’re likely to see even greater integration of advanced technologies like AI and machine learning to process and act on intelligence faster. I also foresee a push toward vendor consolidation, focusing on providers who can deliver comprehensive capabilities like threat hunting and strategic analysis. The ultimate goal will be autonomous defense systems where insights translate to action instantly, keeping pace with adversaries who are always innovating.