Gartner Blog Network

Category: 'insights-and-philosophical' Blog Posts

from the Gartner Blog Network

Endpoint Has Won, Why Bother With NTA?

by Augusto Barros  |  October 3, 2018

One of my favorite blog posts from Anton is the one about the "SOC nuclear triad". As he describes, SOCs should use logs, endpoint and network data on their threat...

Read more »

Comments: 9

Is Your SOC your CSIRT?

by Augusto Barros  |  June 27, 2018

As we move forward on updating our SOC research, Anton and I are back to the discussion about the existence of two separate entities in organizations, the SOC and CSIRT....

Read more »

Comments: 6

Big data And AI Craziness Is Ruining Security Innovation

by Augusto Barros  |  April 11, 2018

I don't care if you use Hadoop or grep+Perl scripts. If you can demonstrate enough performance to do what you claim you can do, that's what matters to me from...

Read more »

Comments: 1

It's Not (Only) That The Basics Are Hard...

by Augusto Barros  |  February 26, 2018

While working on our research for testing security practices, and also about BAS tools, I've noticed that a common question about adding more testing is "why not putting some real...

Read more »

Automation - Why Only Now?

by Augusto Barros  |  January 12, 2018

As we ramp up our research on SOAR and start looking at some interesting tools for automated security testing, something crossed my mind: Why are we only seeing security operations...

Read more »

Comments: 2