Once we understand our critical applications and information, as well as who to pass on information to, we need this pseudo-mature information to be passed to the teams.

Level 2 phase A has the following objectives:

• Begin the integration of the threat intelligence capability with both the security operations center and IT operations center
• Begin to pass threat intelligence information down to the teams
• Basic internal reporting from teams on their status