One Year at Gartner!

Believe it or not, but I've been at Gartner for a year. One whole year has passed since that infamous blog post. I don't feel like diving into deep reflections and long contemplations about it, but I wanted to share how it was. During this year, I …

• learned a lot, and expanded my security knowledge into new areas such as denial of service defense 
• found out that being an analyst is a lot of fun
• realized that there are many levels of writing excellence beyond the level that I thought I had …
• interacted with a lot of smart people both within and outside Gartner
• helped dozens of our clients – both security vendors and large enterprises - with their security challenges, some simple and some pretty esoteric
• discovered that a lot of companies are not where our industry pundits and "thought leaders" say they are (“what is more common  today at large organizations, cloud or Windows 2000?”)

That's about it - I am really looking forward to my second year!

Monthly Blog Round-Up – July 2012

Here is my next monthly "Security Warrior" blog round-up of top 5 popular posts/topics this month:

1. “Simple Log Review Checklist Released!” is often at the top – the checklist is still a very useful tool for many people. “On Free Log Management Tools” is a companion to the checklist (updated version)
2. Next is “SIEM Resourcing or How Much the Friggin’ Thing Would REALLY Cost Me?” While reading this, also check this presentation.
3. “On SIEM Services” appearance on this list reminds me that the Internet has a mind of its own as this post is closely related to what I am working on right now
4. “Top 10 Criteria for a SIEM?” came from one of my last projects I did when running my SIEM consulting firm in 2009-2011.
5. Finally, “Book Review: “UP and to the RIGHT: Strategy and Tactics of Analyst Influence: A complete guide to analyst influence” by Richard Stiennon” made it to the top 5 as well.

In addition, I’d like to draw your attention to a few posts from my Gartner blog:

Current SIEM research:

• On SIEM Processes/Practices
• On Large-scale SIEM Architecture
• Some of the Big SIEM Questions
• My Upcoming SIEM Research

Other fun posts:

• How Are We Doing Compared To Peers?

Also see my past monthly and annual “Top Posts” – 2007, 2008, 2009, 2010, 2011.

Disclaimer: all this content was written before I joined Gartner on Aug 1, 2011 and is solely my personal view at the time of writing. For my current security blogging, go here.

Previous post in this endless series:

• Monthly Blog Round-Up – June 2012
• All posts tagged monthly