Replay.  In this episode, Jeremy Clark and Ryan Rambo explain the five core functions:  investigations, operations, collections, analysis & production, and technical/functional services.  They also discuss how leads are generated, the importance of least-intrusive methods, and the roles of standing investigative authority, analysts, and supporting specialists like TSCM and psychologists.

Jeremy and Ryan also discuss expanding the model to include dedicated cybersecurity and S&T functions, historical examples of operational tradecraft, and practical advice for corporate and government CI programs. Learn how CI protects people, technology, and critical infrastructure, and how professionals should build full-spectrum programs that integrate all functions to identify and neutralize threats.