To enhance capabilities in preception，monitoring，warning，and responding to cybersecurity threats in water conservancy，this study proposes a cybersecurity protection framework integrating cyber threat intelligence. Leveraging the Ministry of Water Resources’ cybersecurity big data platform，the cyber threat intelligence center was established to enable threat intelligence aggregation，private intelligence generation，and multi-type intelligence dissemination. The center is integrated with systems such as the Ministry’s Cybersecurity Threat Perception and Decision Command System，enabling applications in threat hunting，warning responses，and attack tracing. This framework has been implemented in routine cyber security protection and critical period security assurance within the water conservancy sector，effectively improving cybersecurity defenses for the Ministry and affiliated units. The findings provide valuable references and practical insights for constructing cybersecurity defense systems.