Gartner Blog Network

Category: 'monitoring' Blog Posts

from the Gartner Blog Network

Who Validates Alerts Validated by Your Alert Validator Software?

by Anton Chuvakin  |  March 6, 2015

Pardon the idiotic title, but some recent discussions around security analytics have made this question practically relevant. So: You have a SIEM and other security technologies focused on detection and...

Read more »

SIEM/ DLP Add-on Brain?

by Anton Chuvakin  |  February 27, 2015

Initially I wanted to call this post “SIEM has no brains”, but then questioned such harshness towards the technology I’ve been continuously loving for 13 years :-) In any case,...

Read more »

Those Pesky Users: How To Catch Bad Usage of Good Accounts

by Anton Chuvakin  |  February 19, 2015

Gartner says “Malware Is Already Inside Your Organization; Deal With It.” But you know what? I wish it were just stupid malware (well, some is not so stupid): via a...

Read more »

Farewell... for now

by Jonah Kowall  |  February 2, 2015

I wanted to wish everyone happy trails. I've decided to move on to a new set of challenges, and in order to do that I must step down from my...

Read more »

Cool Vendor Pick: Graylog

by Jonah Kowall  |  January 27, 2015

There has been a lot of interest over the last 12 months in products based on open source for monitoring and management. In the area of log analysis, Elasticsearch has...

Read more »

Do You Want "Security Analytics" Or Do You Just Hate Your SIEM?

by Anton Chuvakin  |  January 26, 2015

Now that I’ve taken a fair number of “security analytics” client inquiries (with wildly different meanings of the phase), I can share one emerging pattern: a lot of this newly-found...

Read more »

Cool Vendor Pick: Solarwinds Network Performance Monitor (DPI)

by Jonah Kowall  |  January 15, 2015

Happy new year to everyone, I just finished taking a week off post new years and I'm already hitting the road. On the research front we've published a new update...

Read more »

Security Analytics - Finally Emerging For Real?

by Anton Chuvakin  |  January 12, 2015

Security analytics - a topic as exciting and as fuzzy as ever! My 2015 research year starts from another dive into this area. However, how can I focus on something...

Read more »

Should I Use "SIEM X" or "MSSP Y"?

by Anton Chuvakin  |  December 16, 2014

Lately I’ve been surprised by some organizational decision-making as they think about their sourcing choices for security monitoring. Specifically, some organizations want to decide between “SIEM Brand X” and “MSSP...

Read more »

Gartner Data Center Conference and a research update

by Jonah Kowall  |  December 12, 2014

I hope e veryone in the US had a good turkey day, sorry for the lack of updates. I've been on the road since before thanksgiving, last week we had...

Read more »