Gartner Blog Network

Security Chasm Illustrated

by Anton Chuvakin  |  February 5, 2014  |  3 Comments

This is one of those “no comment” philosophical blog posts, inspired by some client conversations I’ve been having.

g ok senior executive 5 g ok senior executive 8


This is John, a CSO at a large Organization X


This is John, a CSO at a large Organization Y


  • Organization X has a security team.
  • Inside it, there is an IR team.
  • Inside it, there is a threat intelligence (TI) team
  • Inside it, there is a team that focuses on malware reversing
  • That team has 5 people.


  • Organization Y has a security team.
  • It just has 5 people.

Now … think about it: do these people have anything in common to talk about, apart from their first names and [maybe] job titles?

P.S. Gartner stock photos used; any similarity with people real or virtual are purely coincidental.

Possibly related materials:

Additional Resources

View Free, Relevant Gartner Research

Gartner's research helps you cut through the complexity and deliver the knowledge you need to make the right decisions quickly, and with confidence.

Read Free Gartner Research

Category: philosophy  security  

Anton Chuvakin
Research VP and Distinguished Analyst
8 years with Gartner
19 years IT industry

Anton Chuvakin is a Research VP and Distinguished Analyst at Gartner's GTP Security and Risk Management group. Before Mr. Chuvakin joined Gartner, his job responsibilities included security product management, evangelist… Read Full Bio

Thoughts on Security Chasm Illustrated

  1. Gregg Dotoli says:

    The guy on the right took 2 tries to spell DOS.
    They can talk about the superbowl. 🙂

    I’d work for the guy on the left.

    Gregg Dotoli

  2. Well, occasionally the guy on the right cannot even spell “AI-DEE-ES” or even “see-so” 🙂

Comments are closed

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.