cybersecurity

Stay up-to-date on the cutting edge of cybersecurity with insights on Zero Trust, vendors, regulations, and other privacy & security topics.

Insights

Blog

Hunting Through Abstraction: The Next Evolution Of Threat Detection

Josh Zelonis 4 days ago
Following the publication of the latest Forrester Wave™ evaluation on enterprise detection and response (EDR), I published a blog with the demo script that was used in the evaluation to enable further discussion and understanding of where the market is. With this blog, I thought it would be interesting to dig into the demo script a […]
Read More
Blog

Recapping RSA Conference 2020: The Human Element

Elsa Pikulik March 11, 2020
In prior years, the RSA Conference focused on themes such as Zero Trust, geopolitical risk, and automation. While those themes were still present at this year’s conference, it was harder to discern one dominant central theme for the conference. I inferred that “no new buzzwords” exemplifies the theme. This year’s RSA Conference suggested that the […]
Read More

Webinar: Predictions 2020

Dive deeper and get your questions about 2020 answered during our complimentary predictions webinar.

Blog

The Web Application Firewall Market Is Ripe For Disruption

Sandy Carielli March 2, 2020
Let’s face it: Web application firewalls (WAFs) rarely excite the security imagination. WAFs have been ubiquitous for at least 15 years and play an important role in detecting and blocking OWASP Top 10 application level attacks like SQL injection and cross-site scripting. WAFs are table stakes in any environment, but they suffer from the perception […]
Read More
Blog

Extend Your Team With Security Champions

Jinan Budge February 18, 2020
Security and risk pros can’t build a security culture by themselves. Security champions act as extra members of the security team; these people have connections across the organization and can translate security-speak into a language that everyone can understand. Security champions can help make your workforce more receptive to security policies and initiatives. How do […]
Read More
Blog

RSA Conference 2020: What I’ll Be Looking For At This Year’s Show

Paul McKay February 11, 2020
This year marks my first trip to RSA Conference in San Francisco. I wanted to take a step back and reflect on what I want to gain from the conference. Like many analysts attending, my diary looks like the baubles on a Christmas tree, hung resplendently with meetings, briefings, and everything in between. Here are […]
Read More
Blog

The Security Snapshot: Data Privacy, The Biggest Concern Of The New Decade

Joseph Blankenship February 3, 2020
At the end of 2019, Forbes identified data privacy and security as the most pressing issue in the upcoming decade. The issue is already prevalent: Every day, a new story crops up about leaked, compromised, or misused data. While clicking through their often numerous social media accounts, consumers are providing these companies with more personal […]
Read More
Blog

SANS CTI Summit Recap: It’s All About The Process

Brian Kime January 30, 2020
Crystal City again hosted the eighth SANS Cyber Threat Intelligence Summit, with several hundred attendees. CTI Summit cochairs Rick Holland, Rebekah Brown, and Katie Nickels again planned a fun, entertaining, and very educational two-day event for threat intelligence professionals from around the world. If you’re a cyber threat intelligence analyst or vendor, I encourage you to attend and submit a presentation idea for 2021. CTI […]
Read More

Five Steps To Zero Trust Security

How to achieve and maintain Zero Trust.

Blog

The CISO’s Guide To Working With Early-Stage Cybersecurity Firms

Paul McKay January 30, 2020
New research determines that the benefits of working with cybersecurity startups outweigh the risks. Learn more.
Read More
Blog

Product Security And Surveillance Capitalism: Ring And Avast Fumble Privacy, Data Security, And Third-Party Risk

Jeff Pollard January 30, 2020
It’s been a rough couple of months for Ring. Multiple security and privacy issues have plagued the physical security device maker, it’s responded poorly by casting blame on users, and following that, the Electronic Frontier Foundation (EFF) identified that the Ring app is littered with third-party trackers. At virtually the same time, a security product […]
Read More
Blog

Broken Processes Are The Biggest Cybersecurity Threat To Your Organization

Josh Zelonis January 28, 2020
Forrester’s review of the top security threats in 2020 found the biggest risk is often not technology. Analyst Josh Zelonis provides some detailed insight.
Read More
Blog

Children’s Data Privacy: What’s A Parent To Do?

Heidi Shey January 28, 2020
Happy Data Privacy Day! What kinds of conversations do you have with friends and family about privacy? Over the holidays and through the new year, I had the topic of children’s data privacy and device use come up multiple times. This included concerns about apps, internet-connected toys, and technologies used in the classroom. The Concerns […]
Read More
Blog

Cannabis Dispensaries: Security And Risk Considerations For Continued Growth

Alla Valente January 24, 2020
In the US, cannabis is fully legal (medical and recreational) in 11 states and Washington, DC. For medical use, it is legal in 33 states. This is a flourishing industry, with one study conservatively estimating it will reach $30 billion by 2025. As dispensaries set up shop, they face many of the same risks as […]
Read More

Zero Trust In Practice

The theory of Zero Trust was penned by Forrester almost a decade ago. Now, we help you put it in practice.

Blog

A CISO’s Guide To Leading Change

Jinan Budge January 21, 2020
5 ways security chiefs can use internal politics to their advantage.
Read More
Blog

The WAF-Bot Management Acquisition Waltz

Sandy Carielli December 31, 2019
With F5 Networks buying itself a $1 billion Christmas present in Shape Security, it’s a good time to review the state of the bot management market. The Shape Security sale caps off a year of bot management acquisitions by web application firewall (WAF) vendors. In January, Radware announced that it had acquired ShieldSquare, and in […]
Read More
Blog

My Favorite Things (Security-Related) Of 2019

Jinan Budge December 19, 2019
Every year in my personal life with my mother and sisters, we like to celebrate products, lessons learned, and life hacks that we discovered throughout the year (yes, geek alert!). This year, I’m doing it with all of you in my professional life. What were some of your favorite (professional-related) things in 2019? Feel free […]
Read More
Blog

Decade Retrospective: Cybersecurity From 2010 To 2019

Jeff Pollard December 17, 2019
From the Intel-McAfee deal to the Sony Pictures breach, VP and Principal Analyst Jeff Pollard reviews the past decade’s cybersecurity highlights and lowlights.
Read More
Blog

BC And DR Pros, We Need Your Help!

Naveen Chhabra November 22, 2019
Each year, Forrester Research and the Disaster Recovery Journal (DRJ) team up to launch a study examining the state of business resiliency. Each year, we focus on a resiliency domain: IT disaster recovery (DR), business continuity (BC), or overall enterprise risk management (ERM). The studies provide BC pros, DR pros, and other risk managers an […]
Read More
Blog

Enterprise Security Vendors Need An Infusion Of Open Source Culture

Stephanie Balaouras November 21, 2019
Forrester VP and Group Director Stephanie Balaouras reviews the infusion of an open source development mentality in IBM Security and the impact on the broader security ecosystem.
Read More
Blog

Sydney Predictions 2020: The Highlight Reel

Michael Barnes November 17, 2019
Forrester’s analysts serving the Australia and New Zealand market presented their 2020 predictions at a client event on November 14th. We recap some of our top predictions.
Read More
Blog

(Another) Research Announcement: A CISO’s Guide To Our Research About The People Side Of Security

Jinan Budge October 31, 2019
It doesn’t rain; it pours. And I’m so pleased to be announcing yet another report! This time, it’s short, and it summarizes our suite of awareness, behavior, and culture research (security ABCs)! I joined Forrester 18 months ago, and we (like many in the industry) were covering and talking about all sorts of brilliant stuff […]
Read More
More posts