The Gartner Group defines threat intelligence as “evidence-based knowledge, including context, mechanisms, indicators, implications and actionable advice” The deliverable is knowledge of a threat enough in advance to prevent a data breach, or at least to discover it before it becomes invasive. The process of threat intelligence involves four stages: collection of threat information from a variety of sources Reduction and analysis of the data Conclusions about potential threats, based on analysis Action-based decisions, such as mitigation of the problem.”]