governance risk & compliance (GRC)

Insights

BLOG

Your 2018 Guide To Cyberinsurance Is Here!

Nick Hayes June 26, 2018

Forrester’s 2018 Guide To Cyberinsurance Today, no one is 100% secure — believing otherwise is hubris of Icarian proportions. This reality is a core reason why more organizations are turning to cyberinsurance. Because without it in some form (whether it’s a purchased policy or their own allocated cash reserves), they have no safety net to stymie […]

Read More
BLOG

Use Text Analytics Technologies To Handle Mountains Of Unstructured Data

Boris Evelson June 14, 2018

Enterprises are sitting on mountains of unstructured data — 61% have more than 100 terabytes, and 12% have more than five petabytes! Luckily, there are mature technologies out there that can help. First, enterprise information architects should consider general-purpose text analytics platforms. These are capable of handling most, if not all, text analytics use cases, both […]

Read More
BLOG

Risk Tech, Reg Tech — All The 2018 Tech

Nick Hayes June 4, 2018

The Forrester Tech Tide™: Risk And Compliance Management, Q2 2018 We recently published our Tech Tide™ report outlining 14 key risk and compliance technologies to track in 2018. One of the challenging parts of this research is setting the right scope. We found risk and compliance technology everywhere, covering every industry, region, and niche use case. […]

Read More
BLOG

Marketers: Stop Being A Privacy Liability

Fatemeh Khatibloo February 6, 2018

Marketing’s evolution into a practice that relies deeply on individuals’ personal information has created amazing opportunities to expand reach and deepen customer relationships. But this evolution also creates serious risks for marketers and their brands. Our latest report takes a deep dive into the capabilities marketers should focus on to protect themselves and their customers’ […]

Read More
BLOG

Why Carl Jung Would Criticize Today’s Value-Based Marketing

Chris McClean January 22, 2018

GUEST BLOG POST, FROM DREW GREEN As a voracious media consumer, I’m exposed to a mind-numbing amount of advertising. Enough that trends start to emerge. One recent trend standing out more than others is an influx of “cause marketing” tactics, where brands incorporate their values into their messaging. Look no further than the composition of […]

Read More
BLOG

Lacking Smart Third-Party Risk Regulation, JP Morgan Chase, Bank Of America, Wells Fargo, And American Express Create Company: TruSight

Chris McClean November 15, 2017

  The third-party ecosystem continues to flummox risk managers. Regulators keep pushing for stronger oversight, but they fail to offer real standards or tools to make this possible. What’s worse, technology and service providers  have only helped large companies become more efficient at asking their third parties hundreds of questions; which means these third parties […]

Read More
BLOG

Netflix Hack: Key Lessons In The Economics Of Ransomware And Managing Third-Party Risk

Renee Murphy May 2, 2017

Netflix recently experienced a third-party breach. The data lost is Season 5 of Orange is the New Black, which is original Netflix content. Many are calling it the largest entertainment industry hack since Sony. I guess that is right, but how bad is it really? First, here is what happened. Netflix transferred season five to […]

Read More
BLOG

Divide (BI Governance From Data Governance) And Conquer

Boris Evelson January 4, 2017

Stop! Before you invest even 10 minutes of your precious time reading this blog, please make sure it's really business intelligence (BI) governance, and not data governance best practices, that you are looking for. BI governance is a key component of data governance, but they're not the same. Data governance deals with the entire spectrum […]

Read More
BLOG

Forrester’s Security & Risk Research Spotlight - Governance, Risk And Compliance

Stephanie Balaouras May 23, 2016

Crises don’t discriminate. Whether they are economic, geopolitical, technological or environmental, you can expect to have to deal with a major one soon. And how well you minimize the impact of that crisis is the difference between achieving your business objectives, and completely missing them, disappointing your customers, employees, partners, and shareholders in the process. […]

Read More
BLOG

The State Of Business Continuity – We Have A Long Way To Go To Achieve True Resiliency

Stephanie Balaouras August 31, 2015

Aug. 29, 2015 marked the 10-year anniversary of Hurricane Katrina. During the storm and the ensuing chaos, 1800 people lost their lives in New Orleans and across the Gulf Coast. Many of these deaths, as well as the extensive destruction, could have been avoided or minimized if there had been better planning and preparedness in anticipation […]

Read More
BLOG

Announcing The Social Risk & Compliance (SRC) Solutions Wave

Nick Hayes May 7, 2014

Today we published a new Forrester Wave: Social Risk & Compliance (SRC) Solutions, Q2 2014. This report evaluates 10 vendors emerging to help organizations enable companywide use of social media while providing the necessary controls and oversight to mitigate associated risks and enforce compliance.   Why now Use of social media today is rampant. It’s […]

Read More
BLOG

The Shuttle Challenger Anniversary Still Offers Risk Management Lessons, If We Are Willing to Learn Them

Renee Murphy February 25, 2014

January 28th was the anniversary of the Space Shuttle Challenger disaster. The Rogers Commission detailed the official account of the disaster, laying bare all of the failures that lead to the loss of a shuttle and its crew. Officially known as The Report of the Presidential Commission on the Space Shuttle Challenger Accident – The […]

Read More
BLOG

Announcing The Forrester Wave: Governance, Risk, And Compliance Platforms, Q1 2014

Chris McClean January 27, 2014

It’s once again time to tear open the GRC platform market and uncover all its amazing technical innovations, vendor successes, and impact on customer organizations. This afternoon, we published our latest iteration of the Forrester Wave: Governance, Risk, And Compliance Platforms. My esteemed colleagues Renee Murphy and Nick Hayes joined me in a fully collaborative, […]

Read More
BLOG

Modest Growth For Japan’s Tech Market In 2014

Forrester December 12, 2013

Japan remains the second-largest tech market worldwide after the US and accounts for a massive 40% of total IT spending in Asia Pacific. Japanese companies devote most of their annual IT budget and staff — 70% to 80% — to maintaining existing back-end infrastructure and applications. But we expect this budget to shift rapidly over […]

Read More
BLOG

Cold War Security: Four Phones, Two Doors, A Scrap Of Paper, And A Lighter

Renee Murphy October 8, 2013

Outside of Tempe is a place called Sahuarita, Arizona. Sahuarita is the home of Air Force Silo #571-7 where a Titan missile, that was part of the US missile defense system and had a nine-megaton warhead that was at the ready for 25 years, should the United States need to retaliate against a Soviet nuclear […]

Read More
BLOG

Implement A Successful GRC Program With Forrester's Governance, Risk, and Compliance Playbook

Chris McClean February 15, 2013

I’m proud to announce that this week Forrester launched our Governance, Risk, and Compliance Playbook, a collection of in-depth reports covering the critical information you need to implement a successful GRC program… one that focuses on supporting business success, not getting in its way. First, because risk and compliance are always such quickly moving targets, […]

Read More
BLOG

Business Technology Governance — An Update On Our Research

Forrester November 30, 2012

Craig Symons and I are undertaking an initiative to refurbish Forrester's research content on business technology (BT) governance. Here's an update: Since we launched this initiative in September 2012 with the report “The Future Of Business Technology Governance," we have added two more documents to our collection. The first, “The What And How Of Decision-Making,” discusses […]

Read More
BLOG

The Rise, Fall, And Rise Of Software Asset Management: It’s More Than Just A “Good Thing To Do”

Forrester November 29, 2012

To describe software asset management as “red hot” right now might be an overstatement, but it is definitely at the top end of very warm. Three things have spurred me to write this quick blog: The growing number of Forrester client inquiries – unlike with IT service management (ITSM) where most relate to tool selection, […]

Read More
BLOG

Governments Need Basic Technology Tools (And, Are Receptive To Them)

Jennifer Belissent, Ph.D. July 8, 2012

I had an interesting follow-up conversation last week with Dmitry Chikhachev of Runa Capital. I asked what he was seeing in smart cities and civic innovation among Russian startups in these areas. Dmitry’s response supported my own observations that governments need to focus on the basics.  What kinds of innovation are you seeing in the […]

Read More
BLOG

Enabling The Shift to Software Assets: Accenture Software Shows Progress

Frederic Giron July 4, 2012

I recently finalized a report* on software asset (SA) based IT services, this time looking at vendors’ best practices in terms of governance, organization, skills, tools, and processes. Needless to say, the move to software asset-based services will have a huge impact on the traditional operating models of IT services firms. Obviously, IT services firms […]

Read More