All My Research Published in 2016

To make it easy for my readers to find my research, here is the list of everything I published in 2016 [most co-authored with Augusto Barros]. Gartner GTP access is required for all of the papers; the list includes updates to existing papers, such as those on threat intel, incident response and SIEM.

Deception:

• “Applying Deception Technologies and Techniques to Improve Threat Detection and Response” (blog announcement)

SOC:

• “How to Plan, Design, Operate and Evolve a SOC” (blog)

EDR:

• “Comparison of Endpoint Detection and Response Technologies and Solutions” (blog)
• “Endpoint Detection and Response Tool Architecture and Operations Practices” (blog)

Insider threat:

• “Understanding Insider Threats” (blog)

Security monitoring:

• “How to Develop and Maintain Security Monitoring Use Cases” (blog)

SIEM:

• “Security Information and Event Management Architecture and Operational Processes” (blog)
• “SIEM Technology, Market and Vendor Assessment” (blog)

Threat intelligence:

• “How to Collect, Refine, Utilize and Create Threat Intelligence”
• “How to Plan and Execute a Threat Assessment”

Security incident response:

• “How to Plan and Execute Modern Security Incident Response” (blog)

As a reminder, all papers require a Gartner GTP subscription. Peruse the blog posts that announce paper publication for some free quotes and lots of linked blog posts.

Related posts:

• All My Research Published in 2015
• All My Research Published in 2014
• All My Research Published in 2013
• Monthly popular blog posts