Jinan Budge

Zero Trust (ZT) continues to make waves (no pun intended), with US federal agencies now publishing guidance, such as the OMB’s M-22-09 or the DoD’s ZT strategy, for effective implementations, allowing for the government to be viewed as a source of trust in cybersecurity — although ZT is still mired in myths, and these can […]

In September 2022, Forrester’s guide to global SA&T regulations and standards revealed an impetus for a better future, and I shared with you all a sneak peek into the future of security awareness and training (SA&T). And today, I am THRILLED to finally announce to you The Future Of Security Awareness And Training report (client […]

In 2023, APAC firms that prioritize internal security and risk cultural practices to deal with external forces will fare the best. Learn more in our 2023 predictions for cybersecurity and risk in APAC.

People are hardwired to trust other people and, by extension, the organizations they engage with. As an organization, your success or failure at earning and keeping trust ultimately determines not only the fate of your relationship with customers, employees, and partners but the future prospects of the organization itself. But few business, political, or technical […]

Learn how to reduce the three most common types of insider threats in this Security & Risk event preview.

Forrester’s Guide To Global SA&T Regulations And Standards Reveals An Impetus For A Better Future Twenty-five percent of security decision-makers tell us that their security awareness and training (SA&T) programs are driven by compliance. A recent NIST study on “Measuring the Effectiveness of U.S. Government Security Awareness Programs” found that, among leadership, 56% of respondents […]

To hire successful candidates, you need to learn about more than just their tech skills. These tips can help you know what to look for — and what pitfalls to avoid.

Führende Risikomanagementunternehmen in Europa und weltweit sind bereits vom Krieg in der Ukraine und den gegen russische und weißrussische Akteure verhängten Sanktionen betroffen. Forrester-Analysten geben in diesem Beitrag ihre Einschätzung.

Neem de volgende stappen om u goed voor te bereiden op het cyberveiligheidseffect van de oorlog in Oekraïne

11 Schritte, die Sie jetzt tun können, um Ihre Risiken und die Gefährdung durch Cyber-Bedrohungen im Zusammenhang mit dem Krieg zu verringern.

Les leaders de la gestion des risques en Europe et dans le monde sont déjà impactés par la guerre en Ukraine et les sanctions imposées aux acteurs russes et biélorusses. Les analystes de Forrester fournissent leurs conseils dans cet article.

Onze choses que vous pouvez faire maintenant pour réduire vos risques et votre exposition aux cybermenaces liées à la guerre.

Three steps to increase the level of trust in your gender-related messaging.

The security awareness and training (SA&T) market has been stagnant for so long, with the last major disruption as far as I can tell being the introduction of phishing simulations about a decade or so ago. Since then, the industry seems to have seen a slow and steady evolution from ticking boxes to meet a […]

Forrester predicts that in 2022, one in 10 experienced security pros will exit the industry. This brain drain is the result of a few dynamics colliding: poor financial and advancement incentives; general stress and burnout impacting security teams; and cybersecurity’s dirty little secret, workplace toxicity! And cybersecurity isn’t immune to the hidden epidemic impacting women’s ability […]

Risk management leaders in Europe and worldwide are already being impacted by the war in Ukraine and the sanctions imposed on Russian and Belarusian actors. Forrester analysts provide their guidance in this post.

Eleven things you can do now to reduce your risks and exposure to the cyber threats related to the war.

Compliance as a strategy has been one of my bugbears in information security for as long as I can remember. Even when I was a junior professional in the field, I understood the limitations of what we juniors lovingly called the “tick-and-bash” approach — the practice of ticking boxes to confirm that the organization followed […]

Thanks to a few end-of-2021 personal challenges, I was not able to write this blog earlier. I decided, however, that it’s never too late to announce research in which we invested over four months (and over a year of prework and research): The Forrester Wave™: Cybersecurity Consulting Providers In Asia Pacific, Q4 2021. This is […]