Liberty91
The spine of the platform

Configurable questions. Self-maintaining answers.

Intelligence Requirements are the questions your organisation needs answered about threats. Liberty91 turns each one into a tireless agent that evaluates every new event in your context — 24/7, on tap.

Start Free Trial

What is an Intelligence Requirement?

An Intelligence Requirement is a specific, answerable question about threats that matters to your organisation. It is the foundation of Cyber Threat Intelligence tradecraft — the instruction that directs every other step of the intelligence lifecycle.

A good requirement looks like: “What threat actors are actively targeting financial services in the Gulf region, and what initial compromise techniques are they using?” A weak one looks like: “Keep us updated on threats.”

CTI practitioners also use the term Priority Intelligence Requirement (PIR). It is the same concept — an Intelligence Requirement that has been prioritised. On Liberty91 you define the requirements; the platform handles prioritisation continuously, based on what is moving in the real world against your profile. That is why we just call them Intelligence Requirements.

Read the long-form on CTI and the intelligence lifecycle →

Three types of Intelligence Requirements.

Most organisations need all three. Liberty91 runs them in parallel and correlates across them automatically.

01

Threats to you

Monitoring the technologies your organisation deploys — the servers, platforms, and software in your stack. CVEs, exploits, patch advisories, and active campaigns targeting versions you run. Mapped directly to the hosts and assets you care about.

02

Threats from adversaries

Named threat actors, ransomware groups, sectors under active targeting, and the TTPs that matter for your region and vertical. Every new piece of reporting on the actors you're watching is analysed against your profile and turned into actionable output.

03

Concerns specific to your organisation

VIP exposure, impersonation of your brand, leaked credentials, M&A chatter, and compromise of the suppliers you depend on. The requirements that are uniquely yours — the ones a generic threat feed will never surface.

What Intelligence Requirements give you.

Five things every Liberty91 customer gets the moment Intelligence Requirements are switched on.

Always-current knowledge

Liberty91 keeps its own Intelligence Requirements continuously updated on sectors, countries, malware families, threat actors, and supply-chain themes. Knowledge that compounds rather than expires.

Yours stays yours

Author your own Intelligence Requirements for the topics specific to your team. Anything you create — and the data you feed it — stays private to you.

Context on every event

Every event arriving on the platform is read against every relevant Intelligence Requirement. Each one lands with cumulative expert context — the kind no single analyst could realistically carry in their head.

Not just threats

Intelligence Requirements cover your organisation, suppliers, assets, VIPs, and M&A interests alongside the threat-side ones (actors, malware, sectors). The full picture, not half of it.

They work together

Intelligence Requirements cross-reference each other. A question pulls context across all the relevant ones and returns a single answer with citations.

How the agents work a requirement.

Each Intelligence Requirement becomes its own agent inside your dedicated stack. The agent maintains a self-updating knowledge base — everything it has already processed that is relevant to the requirement, ready to be drawn on for the next event.

When new reporting lands, the agents collaborate. An event that touches two requirements — a vulnerability in a technology you run that is also a supplier you depend on — gets analysed against both, with the right framing for each audience.

The output of the agent stack feeds everything else: the daily morning report, RFI responses, Sigma detection rules for the SOC, remediation steps for operators, and board-ready briefs for executives.

https://platform.liberty91.com
Liberty91 Intelligence Requirements list — continuously updated knowledge bases for regions, threat sources, threat types, and threats to your environment, with event counts and Standing IR status

Why this beats running CTI manually.

Configurable, not scripted

Add, remove, or retune requirements without code or a rules engine. Describe what you care about in plain language; the agent stack reorganises around it.

Collaborative agents

An event relevant to two requirements gets dual-context analysis automatically. A CVE in a supplier's stack surfaces under both the supplier requirement and the tech-stack requirement, with the right framing for each.

Self-updating knowledge

Each requirement's knowledge base refreshes on every relevant event. The agent doesn't start from scratch on Monday; it builds on everything it has already processed.

One requirement, many products

The same Intelligence Requirement produces a board-ready summary, SOC-ready IOCs and Sigma rules, an analyst briefing, and a stakeholder-facing report. Generated on demand, for the audience you pick.

Built for every role that consumes intelligence.

Intelligence Requirements look the same under the hood, but the outputs differ by audience.

For Security Leaders →For Analysts →For MSSPs →

Frequently Asked Questions.

Ready to do more with less?

Request a demo or start your free trial today. Get instant access to AI-powered threat intelligence tailored to your organisation.