Gartner Blog Network

Anton Chuvakin
Research VP and Distinguished Analyst
5+ years with Gartner
17 years IT industry

Anton Chuvakin is a Research VP and Distinguished Analyst at Gartner's GTP Security and Risk Management group. Before Mr. Chuvakin joined Gartner, his job responsibilities included security product management, evangelist… Read Full Bio

My GDPR-Inspired Rant: Privacy, WTF!!!

by Anton Chuvakin  |  May 25, 2018

This has been brewing for years, and May 25 (aka “the GDPR Day”) is the perfect day for my epic privacy rant. So, WTF is privacy?! WTF is this obsession with privacy?! Look, I get secrecy or confidentiality. I do NOT want my health data in your hands. Is this privacy? Hell no. This is […]

Read more »

You Cannot Buy Security Operations Maturity But You Can … Ruin It

by Anton Chuvakin  |  May 22, 2018

In my day job, I ponder all sorts of strange stuff. For example, here is a philosophical one: can one buy security operations maturity? By the way, note that when I say “security operations maturity”, the hidden word here is “process” – so in reality I speak of “security operations process and, to a lesser […]

Read more »

Next Research: SOC, SIEM, and Again Overall Detection and Response

by Anton Chuvakin  |  May 21, 2018

We worked too damn hard developing these papers (and one more to come out on this topic), so we will be focusing on updates to our key existing papers next quarter. “Hard work never killed anybody, but why take chances” is the slogan for the coming Summer So, we are planning to update these papers […]

Read more »

Our Threat Testing and BAS Papers Are Out!

by Anton Chuvakin  |  May 18, 2018

With much excitement, we are announcing the release of our “magically awesome” ™ papers on security testing methods and Breach and Attack Simulation (BAS) technologies (Gartner GTP access required). Here they are: “Utilizing Breach and Attack Simulation Tools to Test and Improve Security” focuses on BAS tools. “Security testing is so challenging for technical professionals […]

Read more »

We Scan and We Patch, but We Don’t Do Vulnerability Management

by Anton Chuvakin  |  May 14, 2018

Lately, we’ve been flooded with calls about vulnerability management (VM). Many of the calls seem to be from organizations of medium to low security operations maturity, that are just starting with vulnerability management [and that’s OK – a wise mentor once told me ‘always remember that ‘90% of people are not in the top 10 […]

Read more »

My Top 7 Popular Gartner Blog Posts for April 2018

by Anton Chuvakin  |  May 2, 2018

Most popular blog posts from my Gartner blog during the past month are: Our Security Orchestration and Automation (SOAR) Paper Publishes (SOAR research) <- read the paper or our SOAR blog posts linked therein. SIEM Use Cases – And Other Security Monitoring Use Cases Too! (security monitoring research) Popular SIEM Starter Use Cases (SIEM research) […]

Read more »

Why POCs Fail and Why You Must POC Anyway!?

by Anton Chuvakin  |  May 1, 2018

A lot of people in the industry assume that we Gartner analysts walk on water … … and we do. We do walk on the churning waters of vendor propaganda, misdirection and “messaging.” However, sometimes when clients ask us a tough question about how well some technology will work in their environment, we tell them […]

Read more »

RSA 2018: Not As Messy As Before?

by Anton Chuvakin  |  April 26, 2018

As I am starting to write this, RSA 2018 is not even over yet, but I think I am ready to blog my impressions from this year’s event. As I mentioned many times, I love the #RSAC conference, unlike many of my peers. I like the “industry in one room” vibe, the connections, the hallway […]

Read more »

SOAR Webinar Questions – Answered

by Anton Chuvakin  |  April 16, 2018

Here are my recent SOAR webinar Q&A (also see webinar recording link, our amazing SOAR paper [Gartner GTP access required, but everybody can see the outline]) The questions are edited for clarity and vendor-specific questions omitted. Q1 It sounds like it isn’t really viable to use a SOAR when deploying a new SOC (to optimize […]

Read more »

My Top 7 Popular Gartner Blog Posts for March 2018

by Anton Chuvakin  |  April 2, 2018

Most popular blog posts from my Gartner blog during the past month are: Our Security Orchestration and Automation (SOAR) Paper Publishes (SOAR research) SIEM Use Cases – And Other Security Monitoring Use Cases Too! (security monitoring research) Popular SIEM Starter Use Cases (SIEM research) Detailed SIEM Use Case Example (SIEM research) “Do They Have AI?” […]

Read more »