Methodology tips for analyst teams
Curious about how well-prepared your platform is to address issues in the digital landscape? Want to ensure stronger compliance with regulations and avoid potential penalties? Seeking valuable tips and best practices from industry experts to strengthen your approach?
1. Improve your team's basic investigation skills & Open-Source Intelligence (OSINT) capabilities
- Improve each analyst’s investigation skills, and let them easily stay up-to-date with the ins and outs of online investigation.
- Medium: OSINT — Beginner’s Guide
- LifeRaft: The Beginner’s Guide to OSINT
- OSINT Jobs: The Ultimate Beginner’s Guide to OSINT
- The Cyber Mentor on YouTube: Full 5 hours course on OSINT
- The OSINT Newsletter
- Irina Tech Tips
- Conduct monthly internal reviews of escalated and reported cases.
- Create quantitative and qualitative KPIs (key performance indicators) for your analysts and managers.
Did your team receive any feedback from Law Enforcement officials on the cases you shared? That’s amazing! Share it with your specialists - it always serves as an extra validation and greatly motivates to keep thoroughly moderating and escalating suspicious content.
- Organize a training about bias and how to avoid it.
Other leading resources include:
- Richard Heuer’s guide to the psychology of intelligence analysis
- Phenyo Sekati’s article on importance of local nuance in online content moderation
- Watch an interview with Matt Halprin, YouTube’s Head of T&S on addressing bias and consistency
2. Keep up with current and emerging trends
- Professional collectives:
- Platform Transparency Reports - keep track of what Trust and Safety and investigation teams are doing at other platforms - keeping in mind that many platforms have both transparency reports as well as threat actor reports, such as Meta and Google.
3. Maintain internal knowledge base of platform trends and user behavior
- Start.me for tool repositories
- Notes with screenshots and attached data items
- Activity log of who did what and when in each case
- A dynamic database of all the data your team uploads, creates, and analyzes
4. Increase your proactiveness in detecting threats
5. Dive deep into the data
6. Collaborate with stakeholders
7. Increase transparency & data accessibility
Deeper look: why taking a proactive approach is important
- Depending on the company, this can be an internal process or outsourced;
- It provides the opportunity to detect new trends and threat actors if appropriate tools and resources are available;
- By following different trails, we are able to detect future harms and behaviors before they occur;
- Platform-independent investigations can give a broader perspective on where threats may originate;
- An out-of-the-box approach allows to gain a deeper understanding of today's landscape.
Cognitive bias in investigations and how to avoid it
How link analysis done right can be the key to solving cases faster
5 soft skills that all investigators should have
Classified data in investigations: how to improve your organization’s data security