CSIS Security Group ThreatMatch Intelligence Portal is a threat intelligence platform designed for collaborative intelligence sharing and operational use. The platform provides curated threat alerts filtered and ranked by severity, with each alert mapped to intelligence requirements and containing descriptions, sources, and recommended actions. The portal centers content around the MITRE ATT&CK framework, with all techniques tagged for filtering and visualization. It includes profiles for threat actors, operations, malware, incidents, and countries, providing in-depth analysis of tactics, techniques, and procedures. ThreatMatch enables users to create custom content including intelligence alerts, threat actor profiles, and incident reports. Users maintain control over dissemination, choosing to share intelligence with individuals, departments, organizations, or pre-defined trusted groups. The platform includes attack scenarios that provide comprehensive anatomy of attacks for different threat actors, supporting security testing and control optimization. It delivers regular threat reports and bespoke client research through a dedicated reports module. Collaboration features include "Ask the Analyst" functionality for direct analyst contact, commenting capabilities for interactive dialogue, forums for discussion boards, and real-time chat. The platform provides API access with endpoints mapped to STIX 2.1 and MISP taxonomies, plus JSON endpoints for enriched feeds. ThreatMatch supports organization-specific alerting including digital footprint monitoring, compromised credentials, typo squatting, data leakage, dark web monitoring, and vulnerability tracking. It can be configured for communities, supply chains, and conglomerates with sector-specific or multi-organization intelligence sharing capabilities.