Description:

This thesis examines how various stakeholders influence and shape the Cyber Threat Intelligence (CTI) lifecycle, from planning and direction to dissemination and feedback. By analyzing the intelligence cycle alongside different threat data types—strategic, operational, tactical, and technical—the study identifies how roles and responsibilities vary across sectors and organizational levels. The research offers a structured overview of stakeholder involvement, highlighting how different teams (e.g., SOC, risk management, executive leadership) support or influence specific CTI stages. Through this lens, the thesis provides recommendations for better aligning CTI processes with organizational needs, improving relevance, communication, and operational effectiveness across the cybersecurity ecosystem.