Author
Listed:
- Joseph Adebayo Ojeniyi
(Department of Cyber Security Science, Federal University of Technology, Minna)
- Baha Catherine Maigida
(Department of Cyber Security Science, Federal University of Technology, Minna)
- Olusanjo Olugbemi Fasola
(Department of Cyber Security Science, Federal University of Technology, Minna)
- Grace Amina Onyeabor
(Department of Data Science, Federal University of Technology, Minna)
- Adam Muhammad Saliu
(Department of Data Science, Federal University of Technology, Minna)
- Fatima Binta Adamu
(Department of Data Science, Federal University of Technology, Minna)
Abstract
The scale, speed, and sophistication of cyber threats continue to grow, creating an urgent need for security frameworks that can convert heterogeneous threat feeds into actionable, quantitative risk intelligence. Existing approaches offer useful capabilities in isolation: some concentrate on Cyber Threat Intelligence (CTI) sharing and semantic reasoning, others on large-scale threat graph analytics or federated risk modelling, and others on automated policy-based response. However, the literature has not yet converged on a framework that can continuously ingest raw threat intelligence, correlate it with asset context, and produce dynamic, asset-specific cyber risk scores for timely mitigation. This paper presents a systematic literature review of frameworks that aim to bridge CTI to cyber risk assessment. Following PRISMA guidelines, 45 peer-reviewed articles published between 2019 and 2025 were selected from an initial collection of 380 papers. The review consolidates existing approaches, including graph-based threat intelligence platforms, ontology-based risk monitoring, federated learning for risk classification, and security-policy-controlled systems. Key findings reveal that while individual components exist such as threat entity reputation scoring (TITAN: macro-F1=0.89), mobile device risk classification (FedCRI: F1>99%), and semantic risk reasoning (ontology-based) no single framework integrates raw CTI ingestion, asset context correlation, continuous quantitative risk scoring, and automated policy response. Furthermore, only 11% of reviewed studies address CTI provenance and trust, and only 7% provide fully automated end-to-end pipelines. Based on these findings, a research agenda is proposed for advancing unified CTI-to-risk frameworks in enterprise environments. The review also highlights three important gaps: (1) lack of analysis of the real-time processing constraints and computational latency in CTI-to-risk pipelines, (2) limited use of emerging Generative AI techniques such as Large Language Models for unstructured threat intelligence processing, and (3) no standardized mathematical formulation for quantitative cyber risk scoring. These findings form the foundation for a research agenda towards the evolution of unified, real-time, AI-enhanced CTI-to-risk frameworks in the enterprise.
Suggested Citation
Joseph Adebayo Ojeniyi & Baha Catherine Maigida & Olusanjo Olugbemi Fasola & Grace Amina Onyeabor & Adam Muhammad Saliu & Fatima Binta Adamu, 2026.
"Cyber Threat Intelligence Frameworks for Converting Heterogeneous Threat Feeds into Actionable Quantitative Risk Intelligence: A Systematic Review,"
International Journal of Research and Innovation in Social Science, International Journal of Research and Innovation in Social Science (IJRISS), vol. 10(5), pages 288-314, May.
Handle:
RePEc:bcp:journl:v:10:y:2026:i:5:p:288-314
Download full text from publisher
Corrections
All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:bcp:journl:v:10:y:2026:i:5:p:288-314. See general information about how to correct material in RePEc.
If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.
We have no bibliographic references for this item. You can help adding them by using this form .
If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.
For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Dr. Pawan Verma (email available below). General contact details of provider: https://rsisinternational.org/journals/ijriss/ .
Please note that corrections may take a couple of weeks to filter through
the various RePEc services.