Gartner Blog Network

Category: 'monitoring' Blog Posts

from the Gartner Blog Network

Trouble In The Cloud?!

by Anton Chuvakin  |  June 22, 2015

What challenges does the usage of traditional, on-premise security tools [monitoring tools, like SIEM or DLP, in particular] creates in the cloud [SaaS, PaaS, IaaS models]? Here are some I’ve...

Read more »

Once More on Cloud SIEM or SaaS SIEM

by Anton Chuvakin  |  June 16, 2015

A reminder: cloud SIEM (“SaaS SIEM”) does not really exist yet [so, those who compute market share numbers for it are simply deluded]. However, today there are some “almost SaaS...

Read more »

Cloud Security Monitoring ... Revisited (aka It Is Not 2012 Anymore!)

by Anton Chuvakin  |  May 26, 2015

My next project, now that I am done with security analytics for now, is to revisit our cloud security monitoring work. Specifically, some of you remember my 2012 (!) paper...

Read more »

Who Validates Alerts Validated by Your Alert Validator Software?

by Anton Chuvakin  |  March 6, 2015

Pardon the idiotic title, but some recent discussions around security analytics have made this question practically relevant. So: You have a SIEM and other security technologies focused on detection and...

Read more »

SIEM/ DLP Add-on Brain?

by Anton Chuvakin  |  February 27, 2015

Initially I wanted to call this post “SIEM has no brains”, but then questioned such harshness towards the technology I’ve been continuously loving for 13 years :-) In any case,...

Read more »

Those Pesky Users: How To Catch Bad Usage of Good Accounts

by Anton Chuvakin  |  February 19, 2015

Gartner says “Malware Is Already Inside Your Organization; Deal With It.” But you know what? I wish it were just stupid malware (well, some is not so stupid): via a...

Read more »

Farewell... for now

by Jonah Kowall  |  February 2, 2015

I wanted to wish everyone happy trails. I've decided to move on to a new set of challenges, and in order to do that I must step down from my...

Read more »

Cool Vendor Pick: Graylog

by Jonah Kowall  |  January 27, 2015

There has been a lot of interest over the last 12 months in products based on open source for monitoring and management. In the area of log analysis, Elasticsearch has...

Read more »

Do You Want "Security Analytics" Or Do You Just Hate Your SIEM?

by Anton Chuvakin  |  January 26, 2015

Now that I’ve taken a fair number of “security analytics” client inquiries (with wildly different meanings of the phase), I can share one emerging pattern: a lot of this newly-found...

Read more »

Cool Vendor Pick: Solarwinds Network Performance Monitor (DPI)

by Jonah Kowall  |  January 15, 2015

Happy new year to everyone, I just finished taking a week off post new years and I'm already hitting the road. On the research front we've published a new update...

Read more »