Collaborate Disseminate
After the epic post with vendor tips for analyst briefings, I had a lot of feedback and comments [and praise – mostly praise, naturally :-)]. One thing came up though: advice “tell us about your technology” is often exceptionally hard… Continue reading “Tell Us About Your Technology” and More Analyst Briefing Tips
This new open position on our team is really exciting!!! Think of this as “joining the triumvirate of Augusto Barros and myself in our technology coverage” since this is an expansion hire for our team at Gartner GTP, focused on all the fun … Continue reading Our Team Is Hiring Again: A New Position Open – Threat/Vulnerability/Detection in US/North America
For our new research project focused on starting your detection and response effort, we are thinking about an essential bundle of security operations processes needed for such effort. Sort of “security operations processes you must get right in t… Continue reading Back to Basics: Indispensable Security Processes for Detection and Response
Most popular blog posts from my Gartner blog during the past month are: Important: How to Impress / Annoy an Analyst During a Vendor Briefing? Best / Worst Tips Here! (advice to vendors briefing analysts! timeless! but also #1 this month!) SIEM Use Cas… Continue reading My Top 7 Popular Gartner Blog Posts for January 2018
Here is my next monthly “Security Warrior” blog round-up of top 5 popular posts based on last
month’s visitor data (excluding other monthly or annual round-ups):
“New SIEM Whitepaper on Use Cases In-Depth OUT!” (dated 2010) p… Continue reading Monthly Blog Round-Up – January 2018
While Augusto may disagree, this is probably one of our top 3 favorite papers we’ve written, and it has been UPDATED. Hello world! Please welcome “How to Work With an MSSP to Improve Security”, 2018 update (Gartner GTP access required… Continue reading Our Updated MSSP and MDR Guidance Publishes
Now that we are on a subject of testing security and breach/attack simulation tools, one more interesting questions arises: if you test security, what constitute a “pass”? Or, alternatively, at what level do you test? Think back the infamou… Continue reading Security Testing: At What Level?
Now that we are on a subject of testing security and breach/attack simulation tools, one more interesting questions arises: if you test security, what constitute a “pass”? Or, alternatively, at what level do you test? Think back the infamou… Continue reading Security Testing: At What Level?
A question came up as we are ramping up our testing security and breach and attack simulation tools research projects. Just how motivated are organizations to test whether they have done a good job with security? Note that I think there is a subtle dif… Continue reading On Negative Pressure or Why NOT Objectively Test Security?
A little bird has swooped in and dropped a package into a super-secret drop box in my backyard. My dog has found the package and the following was sealed inside. Clearly, the bird has delivered this in response to my post here. The below is NOT edited … Continue reading Anonymous Guest Post: How to Impress / Annoy a Vendor During an Analyst Briefing?