Gartner Blog Network

Lawrence Pingree
Research Director
6+ years with Gartner
19 years industry experience

Lawrence Pingree is a Research Director in Gartner's Security Technology and Service provider group. His responsibilities include providing critical insights to both end users and technology providers. He closely tracks the information security markets, technologies, technology and adoption trends, and competitive market dynamics.… Read Full Bio

Our Intelligence Lead Defenses Must Evolve

by Lawrence Pingree  |  November 15, 2017

  Threat intelligence has been a hot topic during the past few years. Back in 2015, I introduced research titled “Intelligent and Automated Security Controls Impact the Future of the Security Market” which highlighted the need to intelligently enrich our security technologies and instrument automated security controls in an orchestrated manner – leveraging machine learning and […]

Read more »

How is Threat Deception Client interest evolving from last year?

by Lawrence Pingree  |  October 17, 2017

Last year, I published a quick rundown of the searches on for Distributed Deception Platform providers using the provider name as a search term. I decided to take a look at the changes from year over year. Below is the results of my quick analysis and a table of Distributed Deception Platform providers and how client […]

Read more »

2018 is the year of enterprise-ready counterintelligence.

by Lawrence Pingree  |  June 17, 2017

Imagine for a moment, a future where enterprises get to remotely control the actions of the threat actor. A future where you will be able to engage products or services to monitor and inject the right information at the right time in order to disrupt or mislead the threat actor, pushing them towards the deceptive […]

Read more »

Threat Intelligence Interest areas of Gartner clients

by Lawrence Pingree  |  March 10, 2017

Been a while since I’ve blogged, so I figured I’d update you on what I’m digging into in Q217 with Ruggero Contu (my awesome teammate). He and I are collaborating on a threat intelligence competitive landscape note. As part of this process, I’ve been digging into our search analytics data to identify interest areas […]

Read more »

We need to update security regulations

by Lawrence Pingree  |  December 17, 2016

Today’s information security regulatory standards are out of date. They need to be updated with more prescriptive guidance. For example, almost all security practitioners know they need updated technologies like malware sandboxing, exploit prevention (memory protection) on desktops, enhanced network traffic visibility, distributed deception platforms, web application firewalls and enhanced SIEM systems that can leverage user […]

Read more »

Deception related technology – its not just a “nice to have”, its a new strategy of defense

by Lawrence Pingree  |  September 28, 2016

Deception Techniques “Can be”, and “Are” being used in other Security Solutions In my earlier Emerging Technology note on deception (see “Emerging Technology Analysis: Deception Techniques and Technologies Create Security Technology Business Opportunities“), I called out that there’s a broad-based opportunity for providers of prevention and detection technologies to apply the principles of deception into […]

Read more »

My Latest Research: Competitive Landscape: Distributed Deception Platforms, 2016

by Lawrence Pingree  |  August 4, 2016

4 August 2016  |  Distributed deception platforms are now a viable option for enhancing detection within enterprise security programs. Product marketing managers must understand the competitive positioning of their products and crucial market dynamics in order to compete effectively in the DDP market. Gartner client’s may access this research by clicking here.

Read more »

Imagine the next Security News Headlines….

by Lawrence Pingree  |  July 27, 2016

Just for a moment, imagine the following scenario: “RandomCompany implements distributed deception platform technology, deploys fake databases and data throughout their environment.” News story breaks that “underground news sites report that RandomCompany’s data has been breached and offered for sale  in underground forums”. News outlets ask RandomCompany for comment. RandomCompany reports to news outlets that […]

Read more »

Are Gartner client’s interested in threat deception?

by Lawrence Pingree  |  July 6, 2016

From time to time, I get client inquiries that ask, “Is someone interested in this technology?”.  I have recently covered deception techniques and technologies, and because of that I’ve received quite a few calls asking that question on this technology. Well, in the spirit of giving, I figured I’d give folks a taste of how much […]

Read more »

Is deception effective at delaying or detecting an attacker?

by Lawrence Pingree  |  June 30, 2016

The first question that many folks ask about using deceptions in their security programs is, can’t a deception be easily detected? The answer is yes but also no. IN fact, this is really the core reason the technique is so effective in detecting and misdirecting attackers in an enterprise environment. Recently, I did a webinar for […]

Read more »