Jess Burn

What is Broadcom planning to do with VMware’s Carbon Black unit? Find out in this blog covering the plan to integrate Carbon Black with Broadcom's existing product lineup.

Changing tech, changing threats, and changing consequences. 2024 will be a busy year for security professionals. Get a preview of our top security recommendations for 2024 in this blog and then read our full report.

A recent cybersecurity incident at Change Healthcare cause the pharmacy claims processors to take its systems offline. Learn the implication of this event and five things firms can do to prepare.

Thanks to the widely publicized cybersecurity talent shortage, degree requirements are fading from job postings – even for US Federal contractors – and being replaced by demonstrable skills challenges, making expensive four-year programs less appealing to high school grads and those in the workforce looking for a career change. To keep up, colleges and universities are doing some rethinking of their own as many attempt to carve out a slice of the cybersecurity skills and training pie. In the process, these institutions are renaming the traditional “three Rs” of education.

The emergence of CS&T platforms ushers in a new era of upskilling and training focused not on point-in-time test prep but on continual learning, where practitioners go up against the latest attacker techniques individually or as a team to test technical skills, refine documented processes, and improve communication. They’re also using these platforms to acquire emerging skills, like prompt engineering, which are offered by many of the platforms in this evaluation.

The SEC plans to haunt CISOs with cybersecurity enforcement, but there might be a silver lining for CISOs in the SEC complaint.

Learn how investing in cybersecurity skills and training (CS&T) platforms can help overcome the cybersecurity skills gap in this preview of the upcoming Forrester Security & Risk Forum.

Should CISOs fend off Microsoft to keep their preferred products or embrace consolidation? Find out in this blog.

Email security appliances have come a long way in the past 20 years. Learn the benefits of cloud-delivered email security.

Black Hat USA 2023: Insights From Our Short Vegas Residency Black Hat has gone from being RSAC’s smaller tech and practitioner-focused cousin to being a commercial showcase for cybersecurity vendors. A tightly packed, noisy Business Hall included over 300 vendors and 400 organizations with booths, which was great for swag but bad for anyone with […]

The Forrester Wave™: Enterprise Email Security, Q2 2023, is live! Practically dormant for a decade, the enterprise email security market has sprung to life, with mass customer migration to cloud email, rapid adoption of machine learning, and the widespread use of APIs to connect systems, bolster platforms, and share data. These aligning market forces are […]

Last week, we published Forrester’s third CISO Career Paths report. This research involved an analysis of the career paths of Fortune 500 CISOs, looking into their education, tenures, and prior experiences of security leaders at some of the world’s largest companies. This data showcases existing trends and helps forecast what CISO roles will look like […]

Forrester recently published Top Recommendations For Your Security Program, 2023 for CISOs and other senior cybersecurity and technology leaders. This year’s overarching theme involves protection (as you might expect) — but not exactly in the way you’d think in the context of security. In 2023, our recommendations fall into three major strategic themes for security […]

The definition of “asset” has broadened well beyond traditional financial boundaries in the earliest days of IT asset management. Technology stakeholders are often confused over what constitutes an asset, and the technologies to enable enterprise asset management frequently add to this confusion.

This blog outlines Forrester’s existing Security & Risk research to help organizations navigate, manage, and prepare their organizations for the implications of the National Cybersecurity Strategy.

2022 didn’t let up on the security incidents — according to Forrester’s Security Survey, 2022, 74% of security decision-makers experienced at least one data breach at their firm in the previous 12 months. As we looked at the top breaches and privacy violations of 2022 — and there was activity right up to the end […]

What a time to be in email security! For buyers, there has never been more choice in solutions to protect your organizations. And for sellers? Well, there’s never been more of an incentive to innovate. Forrester’s just-published The Enterprise Email Security Landscape, Q1 2023 report provides an overview of 34 players in this market and […]

CISOs must use this period of austerity to reinforce security as a core competency that drives growth and protects revenue.

Over the last 12 months, “risk dashboards” became all the rage in cybersecurity, with varied titles such as “risk index,” “security baseline,” “security posture,” and “risk posture.” These dashboards appear in a vendor’s user interface and purport to help security programs improve. Some even offer coveted “benchmark data” that leaders can share with boards and […]