Gartner Blog Network

Avivah Litan
VP Distinguished Analyst
19 years at Gartner
34 years IT industry

Avivah Litan is a Vice President and Distinguished Analyst in Gartner Research. Ms. Litan's areas of expertise include endpoint security, security analytics for cybersecurity and fraud, user and entity behavioral analytics, and insider threat detection. Read Full Bio

Morphing EDR Market grows to $1.5 billion in 2020

by Avivah Litan  |  March 15, 2017

We just completed our Forecast for the EDR market (see Forecast Snapshot: Endpoint Detection and Response, Worldwide, 2017) and are forecasting a 45.3% CAGR from 2015 through 2020, dwarfing the overall information security market growth rate of 7% CAGR in that same time period.   The main growth driver: protection has failed too many times […]

Read more »

UEBA and DLP markets Discover Time-Tested “Risk Based” Authentication

by Avivah Litan  |  March 13, 2017

Security vendors and their customers are starting to adopt continuous time tested risk assessment techniques that raise the bar for malicious actors. Of late, some security vendors and enterprise users have been integrating their detection systems with user authentication. When a suspect event is detected, the system automatically reaches out to the user to verify […]

Read more »

Practicing Offensive Defense; Lessons from Israel

by Avivah Litan  |  February 6, 2017

The security industry seems to feed on itself. Most security doctrines view security from the inside out, essentially turning companies into sitting ducks waiting for the next attack to appear. They try to fend off an attack as soon as it hits with either protection or detection that use point solutions patched together in a […]

Read more »

Booming $500 Million EDR market faces stiff challenges

by Avivah Litan  |  January 12, 2017

My colleague Lawrence Pingree and I just published a Competitive Landscape on the EDR market  (see Competitive Landscape: Endpoint Detection and Response Tools ) and found a booming market that more than doubled in 2016, from $238 million in 2015 revenue to about $500 million in 2016.  Just four vendors – Tanium, FireEye, CrowdStrike and Carbon Black […]

Read more »

The Disappearing UEBA Market

by Avivah Litan  |  January 3, 2017

I’m working on a forecast for the UEBA market and it’s quickly bringing this fact into focus By 2022 – there will be no more UEBA market.  Yes the UEBA market has been doubling every year and we estimate it grew from $50M in 2015 to $100M in 2016 and will double again to $200M […]

Read more »

Yahoobreach! How many more Billions of Stolen User Records will it take for the U.S. to Respond?

by Avivah Litan  |  December 16, 2016

The latest disclosure of one billion Yahoo! user records is SHOCKING and begs the question: Where has all this stolen data gone?  If so many identities have been compromised, why haven’t we all lost ‘our shirts’ by now? More American identities have been compromised than haven’t according to U.S. state tax agencies I’ve spoken with. […]

Read more »

Simple People Centric Security Actually Works at Large Midwest Energy firm

by Avivah Litan  |  December 7, 2016

I just returned from a Gartner peer-connect event where some 65 CISOs shared experiences, concerns and visions for a more secure future. There were many substantive discussions but one that stood out was a case study presented by a CISO from a large Midwest energy firm who implemented some simple people-centric and whitelisting security steps […]

Read more »

What Years of Hacks tell Vote Recount and Security Custodians

by Avivah Litan  |  November 27, 2016

It’s good to see that Americans are starting to take voting systems security seriously.  Secure voting is essential to democracy, but as with most other systems, no one thinks about it until there’s been a hack. Hopefully the upcoming vote recount will tell us if our voting systems have been hacked, if in fact there’s […]

Read more »

Cyber Hacking Lessons from the U.S. Election

by Avivah Litan  |  November 10, 2016

I was as stunned as anyone by the U.S. election results. I also immediately questioned the security of the state election systems. I just can’t help but wonder why an August 29  story written by well-respected journalist Michael Isikoff that ran on Yahoo News detailing an FBI alert about hacks into state election servers was […]

Read more »

Minformation; the new threat to Insider threat detection

by Avivah Litan  |  November 8, 2016

I just returned from a FITSI federal government information security conference where I spoke about insider threats.  A forensics expert in the audience asked one of the most provocative questions I’ve heard on this issue – what happens if an insider threat detection system falsely accuses an insider of a crime? This of course is […]

Read more »