Gartner Blog Network

Category: 'Information Security' Blog Posts

from the Gartner Blog Network

Gartner Security and Risk Summits are back!

by Sam Olyaei  |  May 22, 2017

It's that time of the year again... less than a month away from event season! We start in DC on June 12th , we tour the world (Tokyo, Sao Paolo,...

Read more »

Do you have a ticking time-bomb in your Network?

by Andrew Lerner  |  May 19, 2017

This is a guest blog from Mark Fabbi Since February 2017, a growing number of network and security vendors have published field notices or confirmed that some product lines have...

Read more »

WannaCry or Useful Reminders of the Realities of Vulnerability Management

by Anton Chuvakin  |  May 18, 2017

WannaCry whatever. Not that I am keyword trawling, but this recent Windows XP/NSA/North Korea/ransomware/bitcoin/OMG drama made me think about good old vulnerability management again – especially given that it is...

Read more »

More Cloud Security Monitoring Contemplations

by Anton Chuvakin  |  April 25, 2017

Your choice for security monitoring and/or threat detection technologies for different cloud models (SaaS, PaaS, IaaS) is, essentially: Use the security controls that your cloud service provider (CSP) offers …...

Read more »

Cloud Threat Detection Research

by Anton Chuvakin  |  April 19, 2017

What an amazing coincidence! After all the UEBA / UBA excitement (that is, sadly, still ongoing….) and after my short threat hunting paper (out already!), we are about to revisit...

Read more »

Why Your Security Data Lake Project Will FAIL!

by Anton Chuvakin  |  April 11, 2017

Beats me, but for some reason organizations think that they can build A SECURITY DATA LAKE and/or their own CUSTOM BIG DATA SECURITY ANALYTICS tools. Let me tell you what...

Read more »

SIEM Future: A UEBA Path or An MDR Way?

by Anton Chuvakin  |  April 7, 2017

Want to hear a bad joke about #SIEM? Knock knock Who’s there? SIEM! No way… you are dead!!! Ok, in all seriousness, we all know SIEM is NOT dead –...

Read more »

My "How to Hunt for Security Threats" Paper Published

by Anton Chuvakin  |  April 6, 2017

My mini-paper on threat hunting is out! Review “How to Hunt for Security Threats” (Gartner GTP access required) and provide feedback here. The abstract states “Technical professionals focused on security...

Read more »

Speaking at Gartner Security Summit 2017

by Anton Chuvakin  |  April 6, 2017

Gartner Security & Risk Management Summit 2017 is coming soon and here is my traditional blog post summarizing my speaking at this upcoming event (Washington, DC, June 12-15, 2017). “How...

Read more »

Our Security Analytics and UEBA Papers Published

by Anton Chuvakin  |  March 31, 2017

After a long, somewhat painful process our security analytics papers are out! “Demystifying Security Analytics: Sources, Methods and Use Cases” (an update to our 2015 paper) examines security analytics initiatives...

Read more »