My Next Research Area: Incident Response
by Anton Chuvakin | May 23, 2013 | 3 Comments
It is with GREAT excitement that I am pre-announcing my next area of research focus – security incident response.
In brief, here is what I have in mind for the next few months:
- Host and Malware Forensics Tools and Practices (title tentative), an assessment of the endpoint investigation tool scene (to complement my just-finished report on network forensics)
- Incident Response in the Age of APT (title tentative), a guidance to doing incident response (from tools to teams!) in the modern era of industrial cyber-crime, APT and also cloud/virtual/mobile environments.
Some of the vendors I am speaking with or planning to speak are Crowdstrike, Mandiant, Guidance Software, Carbon Black, some anti-malware/EPP vendors (who actually think rather than milk). And of course, as with all Gartner GTP research, I am planning to have lots of conversations with enterprise CIRTs, other end users and whatever others sources of current IR wisdom…
Possibly related posts:
-
My Coverage Areas Reminder
-
Alert-driven vs Exploration-driven Security Analysis
-
Speaking at Gartner Catalyst Conference 2013 (some early research results on incident response will be presented there)
Additional Resources
View Free, Relevant Gartner Research
Gartner's research helps you cut through the complexity and deliver the knowledge you need to make the right decisions quickly, and with confidence.
Read Free Gartner Research
Category: incident-response security
Tags: incident-response security
Anton Chuvakin
Research VP and Distinguished Analyst
8 years with Gartner
19 years IT industry
Thoughts on My Next Research Area: Incident Response
Comments are closed
Who's Blogging
- Christophe Uzureau
- Andrew White
- Rick Lafond
- Danielle Henneberger
- Debbie Wilson
- Augusto Barros
- Hank Barnes
- Mark Mcdonald
- Scot Kim
- Avivah Litan
- Daniel Sanchezreina
- Eric Schmitt
- Jason Wong
- Dave Egloff
- Chris Ross
- Rene Buest
- Frank Buytendijk
- Augie Ray
- Jitendra Subramanyam
- Jim Hare
- Michael Mccune
- Tim Barlow
- Manjunath Bhat
- Marko Sillanpaa
- Mike Mcguire
- Mark Raskino
- Claire Tassin
- Lane Severson
- Bill Ray
- Andrew Frank
- Sean Holbert
- John Wheeler
- Marty Resnick
- Anna Maria
- Charles Golvin
- Benjamin Bloom
- Vivek Swaminathan
- Michael Woodbridge
- Annette Zimmermann
- Deacon Wan
- Mike Wonham
- Don Scheibenreif
- Steve Rietberg
- Alex Gash
- Lizzy Foo
- Camden Jones
- Aparajita Mazumdar
- Jane Anne
- Sally Witzky
- David Furlonger
About
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.
Hi Anton
would be happy to talk and introduce, we are doing mobile forensics in motion in a managed service model
kobi
Thanks for the message.
SInce you are a vendor/service provider, please request a briefing via http://www.gartner.com/it/about/vbriefings_faq.jsp
[…] Anton Chuvakin is a research director at Gartner's IT1 Security and Risk Management group. Before Mr. Chuvakin joined Gartner, his job responsibilities included security product management, evangelist… Read Full Bio Coverage Areas: ← My Next Research Area: Incident Response […]