your chief information security officer (ciso) wants to develop a new collection and analysis platform that will enable the security team to extract actionable data from its assets. the ciso would like your input as far as which data sources to draw from as part of the new collection platform, worrying that collecting from too many sources, or not enough, could impede the company's ability to analyze information. is this a valid concern, and how can it be addressed within an intelligence life-cycle model?