Gartner Blog Network

Category: 'mssp' Blog Posts

from the Gartner Blog Network

Hybrid SOC Scenarios

by Anton Chuvakin  |  June 29, 2018

One more important angle we are exploring in our SOC paper update is about so-called “hybrid SOCs.” In our SOC materials, this admittedly nebulous term refers to a SOC that...

Read more »

Can You Do a SIEM-less SOC?

by Anton Chuvakin  |  June 26, 2018

Along the lines of this post where we discussed the concept of “SIEM alternatives”, let’s discuss this in the context of a modern SOC. Will I ever do or recommend...

Read more »

Is Security Just Too Damn Hard? Is Product+Service The Future?

by Anton Chuvakin  |  June 21, 2018

OK, I got a catchy headline, now what? :-) This is another philosophical post about the fate of our beloved domain of cyber. Specifically, we all remember Dan Geer’s classic...

Read more »

Our Updated MSSP and MDR Guidance Publishes

by Anton Chuvakin  |  January 30, 2018

While Augusto may disagree, this is probably one of our top 3 favorite papers we’ve written, and it has been UPDATED. Hello world! Please welcome “How to Work With an...

Read more »

MSSP is/and/or/vs MDR?

by Anton Chuvakin  |  December 14, 2017

So, we are wrapping up our research on the effective use of managed services for security and that debate of MSSP vs MDR came up … again! Gartner defined MDRs...

Read more »

Your Security Operations Maturity - and Your MSSP

by Anton Chuvakin  |  October 17, 2017

Contrary to what some people think, using MSSP is not just for losers low-maturity organizations and SMBs. For sure, we do see a lot of MSSP usage by clients who...

Read more »

How To Test Your MSSP/MDR?

by Anton Chuvakin  |  October 11, 2017

As customary in our beloved domain of “cyber”, I will start with a depressing quote: “If you really knew how to test an MSSP properly, you likely didn't need an...

Read more »

The Curse of A Black MSSP

by Anton Chuvakin  |  September 25, 2017

I think I accidentaly discoverd a new curse, The Curse of a Black MSSP. In recent weeks I’ve spoken to several organizations who has fallen to this particular affliction. They...

Read more »

SIEM Future: A UEBA Path or An MDR Way?

by Anton Chuvakin  |  April 7, 2017

Want to hear a bad joke about #SIEM? Knock knock Who’s there? SIEM! No way… you are dead!!! Ok, in all seriousness, we all know SIEM is NOT dead –...

Read more »

Speaking at Gartner Security & Risk Management Summit 2015

by Anton Chuvakin  |  April 7, 2015

Gartner Security & Risk Management Summit 2015 is coming soon [well, for some definition of "soon" :-)]! Here is my traditional blog post summarizing my speaking at this event (Washington,...

Read more »