This document summarizes GreyLogic's market research on cyber intelligence customers, competitors, and best practices. It identifies the top 12 potential government and private sector customers in the US and EU. 16 competitors were identified, with the closest being iDefense Labs, iSIGHT Partners, and SecureWorks. The best markets are large US government agencies and companies relying on IT. Within the EU, the UK and countries vulnerable to Russian influence are best. Government and private sector each make up around half of the potential customers. Industry best practices include strategic alliances, online community building, and gradual pricing structures.

1. GreyLogicCyber Intelligence Market and Competitor Research13 November 2009

2. RequirementsWho are the potential customers for a weekly newsletter summarizing and analyzing trends in various cyber threats and for tailored intelligence briefings in the United States (US) and the European Union (EU)?Who are GreyLogic’s competitors and how deep is the market penetrated by them?What are the “best practices” among companies providing timely intelligence to private and government clients in the US and the EU?Competitors' services' pricing structure from a starting company to a mature business.What types of products and services do these companies provide?What is the companies' marketing strategy?2

3. AgendaKey FindingsCustomersGovernment

4. Private Sector

5. AcademiaCompetitorsMarket Penetration

6. Best Practices

7. Service Pricing

8. Products and Services

9. Marketing Strategies3

10. Key FindingsTop 12 Customers1. Cyber Security Management Center (CSMC) (US)2. Defense Information Systems Agency (DISA) (US)3. Department of Energy (DOE) (US)4. Department of State (US)5. United States Postal Service (USPS) (US)6. National Aeronautics and Space Administration (NASA) (US)7. Ebay (US)8. Western Union (US)9. Arsys (EU)10. Facebook (US)11. LiveJournal (US)12. Twitter (US)4

11. Key Findings The best markets for a weekly cyber intelligence brief are likely:Large US government agencies and secondly large private companies with,Cyber or national security missionsServices provided through ITEuropean market highly fragmentedDiversity – numerous separate marketsBest markets within EU: UK and countries in Russia’s sphere of influence, such as Estonia and Poland5

12. Key Findings 51 Total OrganizationsGovernment : 17Private Sector: 23Academia: 11United States: 35European Union: 16Source: Created by analyst6

13. Customers - Government9 out of 17 victims of cyber attack

14. 7 out of those 9 were US government agencies

15. 14 out of 17 are high or moderately high-value targets

16. Disruption would have symbolic, financial, political, or tactical consequences

17. Critical Infrastructure and Key Resources (CIKR) sectors7

18. Customers - Government 12 out of 17 have IT- or national security centric missions

19. i.e. Cyber Security Management Center, Defense Information Systems Agency 9 out of 17 rely on private companies or Information Sharing and Analysis Centers (ISACs) for cyber security services8

20. Customers - GovernmentTop Five Government CustomersCyber Security Management Center (CSMC)Defense Information Systems Agency (DISA)Department of Energy (DOE)Department of State (DOS)United States Postal Service (USPS)9

21. Department of StateContact Information:Susan Swart, Chief Information Officer, Phone: 202-647-2889Charles D. Wisecarver, Deputy Chief Information Officer, 202-647-2863Robert K. Nowak, Director of IT Infrastructure, 202-647-1001John Streufert, Director of Information Assurance, 703-812-2500Cheryl Hess, Director of Information Security Programs for the Bureau of Diplomatic Security, 571-345-3080Organizational structure of Dept. of State contact persons. Source: Created by analyst10