Application Security

Agile development’s cycle of deployments and patches generates ample opportunities for hackers looking for a way in. Application security must be strong, vigilant, and nimble. Read our insights.

Discover how Forrester supports technology executives.

Insights

Blog

Announcing Forrester’s 2024 Security & Risk Enterprise Leadership Award Winner And Finalist

Stephanie Balaouras November 14, 2024
Learn more about the security strategies that helped Schneider Electric win this year’s Security & Risk Enterprise Leadership Award, which recognizes organizations that have transformed their security, privacy, and risk management functions.
Read More
Blog

The API Security Software Landscape, Q3 2024

Madelein van der Hout November 1, 2024
While API discovery and policy enforcement have gained traction, it's time for companies to elevate their approach to API security maturity. Learn how to get started in this preview of a new report.
Read More
Blog

Retailers: Adopt Three Application Security Technologies Now

Sandy Carielli October 29, 2024
Three application security technologies are key for retailers to adopt before the holiday season.
Read More
Podcast

A Fresh Look At The Future Of The CISO

What It Means October 17, 2024
The role of the chief information security officer (CISO) is more vital than ever. But how are CISOs holding up under the spotlight, and how is the role changing? VP and Principal Analyst Jeff Pollard and Principal Analyst Jess Burn share some new research on the future of the CISO.
Listen Now
Podcast

Lessons Learned From The CrowdStrike Outage

What It Means October 10, 2024
On July 19, an update from security software vendor CrowdStrike took down 8.5 million Windows endpoints and caused widespread chaos. In this episode, VP and Research Director Amy DeMartine and Principal Analyst Allie Mellen discuss the lessons learned from the outage and what steps security and business leaders should take as a result.
Listen Now
Blog

Predictions 2025: Security And Risk Pros Will Brace For Regulations And Resilience

Cody Scott October 1, 2024
With cybercrime expected to cost $12 trillion in 2025, regulators will take a more active role in protecting consumer data while organizations pivot to adopt more proactive security measures to limit material impacts. Find out more in our 2025 predictions for cybersecurity, risk, and privacy.
Read More
Blog

Apply For The 2024 Forrester Security & Risk Summit Scholarship Today

Allie Mellen September 30, 2024
Forrester is once again partnering with Women in Security and Privacy to provide free admission to our Security & Risk Summit for four women looking to break into cybersecurity. Learn the details and find out how to apply for the scholarship here.
Read More

Jan. 30 Tech & Security Predictions Webinar

Join us to dive into the top 2025 predictions and discover their impact on your tech and security strategies — with exclusive insights from the analysts who conducted the research.

Join Us
Blog

Let’s Debunk Some Application Threat Modeling Myths!

Sandy Carielli September 30, 2024
Application threat modeling has gotten a bad rap over the years but security leaders need to get over the myths and implement it. Learn three of the most common misconceptions around application threat modeling in this preview of a new report and session at our upcoming Security & Risk Summit.
Read More
Blog

Why Attack The Front Door If The Mobile Side Door Is Open?

Paddy Harrington September 19, 2024
When it comes to mobile device security, barely half of organizations are using unified endpoint management (UEM). That’s like locking the front door and leaving the side door wide open. Find out why security teams overlook mobile devices in this preview of our upcoming Security & Risk Summit.
Read More
Blog

Don’t Let Another Organization Win Your Forrester 2024 Security & Risk Enterprise Leadership Award

Amy DeMartine September 16, 2024
The Security & Risk Enterprise Leadership Award recognizes orgs that transformed the security, privacy, and risk management. Learn more about the award and find out how to apply.
Read More
Podcast

How Close Are We To Killing Passwords?

What It Means September 5, 2024
Are passwords obsolete or still a necessary evil? In this episode, Vice President and Principal Analyst Andras Cser and Principal Analyst Geoff Cairns describe where we are on the path to passwordless authentication for both enterprise and consumer users.
Listen Now
Blog

The Shakedown From Black Hat USA, 2024

Sandy Carielli August 14, 2024
What happens when five security analysts gather at a security conference in Las Vegas? Stuff gets broke. Find out more in this review of the recent BlackHat USA event.
Read More

Ready For These 2025 Tech And Security Shifts?

Step into 2025 with confidence! Explore our predictions for tech and security leaders, featuring key trends in AI, cloud, SDLC, and AIOps you need to know.

Get Our 2025 Predictions Guide
Blog

The CrowdStrike Moment Calls For A Redefinition Of Business Resilience

Charles Betz July 26, 2024
Crises such as the one triggered by CrowdStrike's global outage shine a bright light on many aspects of business and technology. Our new report provides a thorough overview of recommended actions for tech leaders as they face the unfolding long-term repercussions.
Read More
Blog

Not Even Banana Ball Is Immune To Bad Bots

Sandy Carielli July 1, 2024
What do the Savannah Bananas have to do with our new report on bot management and operators? Find out in this blog.
Read More
Blog

Forrester’s AI Webinar Series: Navigate The Choppy And Exciting Waters Of Enterprise AI

Sudha Maheshwari June 7, 2024
AI is having — and will continue to have — a profound impact on how data scientists, software engineers, and other job functions perform their roles. Get tips on how to define, build, and implement your enterprise AI strategy with the help of Forrester's AI Advantage client webinar series.
Read More
Blog

Ludicrous Speed — Because Light Speed Is Too Slow To Secure Your Apps

Janet Worthington June 7, 2024
Code is being released at ludicrous speed today. But without appsec, that code has the potential to introduce significant risk. Learn some of the key trends and benefits to DevSecOps in this post.
Read More
Blog

The State Of Cybersecurity Innovation: RSA Conference 2024

Heidi Shey May 20, 2024
RSAC gives security startups two structured opportunities to distinguish themselves, and Forrester always finds it revealing to see which startups make the cut.
Read More

See What’s Next For Generative AI In Security Tools

The potential for AI in security tools is just beginning! Watch our webinar replay to learn how generative AI is transforming security tools and impacting security practitioners, along with the exciting innovations that lie ahead.

Watch The Replay Now
Blog

Forrester’s RSAC 2024 Themes, Takeaways, And Observations

Jeff Pollard May 15, 2024
More than 41,000 attendees, 600 exhibitors, and 425 sessions. Get some of the key themes and takeaways from the Forrester security & risk analysts who attended RSA Conference (RSAC) 2024.
Read More
Podcast

Top Cybersecurity Threats In 2024

What It Means May 2, 2024
In today’s cybersecurity environment, threat detection is key. In this episode, Principal Analyst Brian Wrozek and Senior Analyst Janet Worthington discuss the top five cybersecurity threats in 2024 and how organizations can protect themselves. 
Listen Now
Blog

Announcing Forrester’s Security & Risk Enterprise Leadership Award

Stephanie Balaouras May 1, 2024
We have opened the call for our annual Security & Risk Enterprise Leadership Award. This award recognizes organizations that have transformed the security, privacy, and risk management functions into capabilities that fuel long-term success. Learn more about the award and how to apply.
Read More
More posts