Check out blogs by Pete Lindstrom's colleagues at Burton Group -- Identerati (personal blog), Identity and Privacy Strategies (company blog), Security and Risk Management Strategies (company blog). The 3 links should be listed below.

Also, ESG's Jon Oltsik's blog is very good, hosted at Cnet as part of the "security news blog". I prefer his ESG feed: Insecure about Security, at http://esgblogs.typepad.com/jons_blog/http://www.news.com/8301-10784_3-9781407-7.html?tag=bl

Forrester Research has 2 security blogs, one by Michael Rasmussen on GRC, and a team blog on security and risk management. Links:
http://blogs.forrester.com/grc_intelligentsia/
http://blogs.forrester.com/srm/

I'll enjoy checking out your list, as well, though perhaps I define "analysts" a bit more narrowly than you do.

Links:

• http://identerati.blogspot.com/
• http://identityblog.burtongroup.com/
• http://srmsblog.burtongroup.com/

posted September 21, 2007

Kim Cameron's (Microsoft's identity architect) Identity Blog is also interesting to read.

Links:

• http://www.identityblog.com/

posted September 21, 2007

I would add to your list...

Risks Digest (for the bigger picture) http://catless.ncl.ac.uk/risks
SANS Internet Storm Center (for late breaking news) http://isc.sans.org/

posted September 21, 2007

http://notabob.blogspot.com/
http://identityblog.burtongroup.com/
http://cme-spam.blogspot.com/
http://www.identityblog.com/
http://www.ranum.com/
http://ronosphere.blogspot.com/
http://www.cl.cam.ac.uk/%7Erja14/

Links:

• http://notabob.blogspot.com/
• http://identityblog.burtongroup.com/
• http://cme-spam.blogspot.com/

Ron W also suggests these experts on this topic:

• Chris R
• Sridhar M
• Bob B

posted September 21, 2007

I would suggest that you subscribe to the Security Bloggers Network (http://feeds.feedburner.com/Security-Bloggers-Network) in your favorite RSS reader. There are a number (I don't know the exact amount) of bloggers who participate. I know most of the one's you listed above participate. I would also suggest you join the Security Catalyst Community (http://www.securitycatalyst.org/). Most of these bloggers our on there.

One last one, http://www.cutawaysecurity.com/blog/ , this dude is very sharp and a nice guy.

posted September 21, 2007

http://pmelson.blogspot.com/2007/07/my-feeds.html

That's all of the stuff I read, give a take a few that have changed in the past 2 months.

posted September 24, 2007

You've already got some of the best on your list. I would add these, which I've linked below:

A Day in the Life of an Information Security Investigator
Darknet
rdist
invisiblethings (http://theinvisiblethings.blogspot.com)

Also, I have my own info sec blog, that you can feel free to check out (http://eugenekogan.net).

Links:

• http://blogs.ittoolbox.com/security/investigator
• http://www.darknet.org.uk/
• http://rdist.root.org/

posted September 24, 2007

Well, I have quite an extensive security blogroll, but I'll cherry-pick a few for you.

When {Puffy} Meets ^RedDevil^ (geek00l.blogspot.com)

A Day in the Life of an Information Security Investigator (http://blogs.ittoolbox.com/security/investigator)

Windows Incident Response (http://windowsir.blogspot.com/)

And of course, I have my own blog, which focuses on Network Security Monitoring and a few other technical security subjects:

Infosec Potpourri (blog.vorant.com)

Actually, even if you don't end up reading my blog, you might want to visit it just to see the full blogroll. I have a lot of entries, but I tend not to keep stuff that isn't useful in some way.

Links:

• http://blog.vorant.com

posted September 25, 2007

Already on the list, but I'd just like to second the recommendation for Marcus Raynum and Bruce Schneier's blogs.

posted September 25, 2007

Well, if you like Arbor, sign up for their own blog (linked below). Nice guys over there also (my firm developed their website).

-David

Links:

• http://asert.arbornetworks.com/

posted September 24, 2007