security & risk

Insights

Come And Join Us To Learn How Security Can Safeguard Your Digital Investments And Help You Serve Your Customers Effectively

Paul McKay September 13, 2018

Security is one of those words that is associated with hackers, reputational failures, and fear, uncertainty, and doubt. I disagree: Security, when done properly, can be one of the biggest investments you make. It is crucial to building customer trust and safeguarding digital investments. Furthermore, responding well to a breach can enhance shareholder value and […]

Read More

Zero Trust Technology Works; Excuses Don't

Chase Cunningham September 4, 2018

I have done a few exercises on implementing Zero Trust and Zero Trust eXtended (ZTX) in enterprises. The impetus behind these exercises from a strategy standpoint is that the participating organizations have leaders that are Forrester clients and had read, or at least breezed through, the research that has been published on the topic of […]

Read More

Zero Trust Technology Works; Excuses Don't

Chase Cunningham September 4, 2018

I have done a few exercises on implementing Zero Trust and Zero Trust eXtended (ZTX) in enterprises. The impetus behind these exercises from a strategy standpoint is that the participating organizations have leaders that are Forrester clients and had read, or at least breezed through, the research that has been published on the topic of […]

Read More

A New Era Of Privacy Is Here — We Can Help You Navigate It

Fatemeh Khatibloo August 20, 2018

Who knew that failed data governance would be the thing to turn the privacy world on its ear? When the Facebook/Cambridge Analytica scandal broke . . . and then got worse, consumers and politicians alike finally seemed to understand that the data economy had gotten away from us all. As a result, 2018 has forever […]

Read More

Cybersecurity Transformation Is A Thing, And It Needs Personal And Relentless Drive

Jinan Budge August 2, 2018

Well, it’s happening! My first Forrester report was published this week. (Forrester clients can access here.) The topic? Cybersecurity transformation, of course! It’s what I have lived and breathed for the last 3.5 years. I have also engaged peer CISOs doing terrific work transforming their firms’ security function and capabilities — I’ve always had a passion […]

Read More

Cisco Purchases Duo Security For $2.3 Billion

Merritt Maxim August 2, 2018

Today, Cisco announced that it has acquired Ann Arbor, Michigan/California-based Duo Security for $2.35 billion in cash. Founded in 2010, Duo Security has been growing rapidly over the last few years with its multifactor authentication (MFA) offering and has raised over $120 million in venture financing to date. Based on Forrester’s estimates of Duo Security’s […]

Read More

Cybersecurity And Professional Sports: Securing The Internet Of Sports

Merritt Maxim July 25, 2018

Over the past few years, companies in all markets have embraced digital transformation, whether it is financial services finding new mechanisms to engage with customers or manufacturers adding sensors and other data collection components into their operational processes. These digital transformation efforts are about leveraging digital insights to drive better outcomes. Digital transformation has value in the […]

Read More

Digital Risk Protection In 2018: New Vendors, New Leaders, New Wave

Nick Hayes July 17, 2018

Digital Risk Protection In 2018: New Vendors, New Leaders, New Wave Our “The Forrester New Wave™: Digital Risk Protection, Q3 2018” report is out! Take a look at how 14 DRP vendors stack up in this emerging market. You will find detailed vendor profiles and analysis evaluating how well they monitor and mitigate organizations’ external, […]

Read More

The Fraud Management Solutions Market Will Exceed $10 Billion By 2023

Jennifer Adams July 17, 2018

Estimates of the cost of fraud vary widely, but almost everyone agrees that the cost is huge and appears to be increasing. Looking just at eCommerce, Forrester predicts that US and Western European eCommerce fraud will reach $18.6 billion in 2018. And in its 2017 True Cost of Fraud report, LexisNexis Risk Solutions estimates that fraud […]

Read More

Welcome Rain Capital

Claire O'Malley July 9, 2018

Rain Capital is shaking up the investment side of cybersecurity. Apart from only 11% of cybersecurity professionals being women, venture capital (VC) firms also suffer from a gender disparity with limited diversity. According to TechCrunch, only 8% of partners from the top 100 venture firms were women in 2017, and eight of these top 100 […]

Read More

Your 2018 Guide To Cyberinsurance Is Here!

Nick Hayes June 26, 2018

Forrester’s 2018 Guide To Cyberinsurance Today, no one is 100% secure — believing otherwise is hubris of Icarian proportions. This reality is a core reason why more organizations are turning to cyberinsurance. Because without it in some form (whether it’s a purchased policy or their own allocated cash reserves), they have no safety net to stymie […]

Read More

"That’s Not My Job": I&O’s Role Shift When It Comes To Security

Chris Gardner June 25, 2018

In the halcyon days of my sysadmin youth, my team was asked to perform entitlement reviews on sensitive systems. When we were asked to determine who should have access to what, my director responded in a way I would never forget: “That’s not my job.” It sounds snarky, but he was correct. It wasn’t our […]

Read More

"That’s Not My Job": I&O’s Role Shift When It Comes To Security

Chris Gardner June 25, 2018

In the halcyon days of my sysadmin youth, my team was asked to perform entitlement reviews on sensitive systems. When we were asked to determine who should have access to what, my director responded in a way I would never forget: “That’s not my job.” It sounds snarky, but he was correct. It wasn’t our […]

Read More

All The Fun Of The Fair: Some Initial Thoughts On Infosecurity Europe 2018

Paul McKay June 11, 2018

Last week, I attended Infosecurity Europe 2018, the largest event of its kind in Europe. The event is a carnival of the cybersecurity industry, with promotion of every information security product imaginable. There are also more conference training tracks than your average railway. The show gives a good indication of the key issues that are […]

Read More

Building The Language Bridge Between Security And The C-Suite

Jinan Budge June 8, 2018

If you had half an hour with a board member and you wanted to get coaching from them about how to communicate with them about security, what would you ask them? In a few weeks’ time, I will have just that opportunity when I facilitate a panel with some prominent board directors. Getting inside the […]

Read More

Cyber Conferences: It Shouldn’t Be This Way

Chase Cunningham June 7, 2018

I recently saw another posting/photo from a friend in the industry that showed what amounts to “booth babes” at yet another conference; this time it wasn’t in Vegas, it was in Europe. This issue is one of importance in an industry rife with failure on lots of levels, a lack of available talent, and that […]

Read More

Risk Tech, Reg Tech — All The 2018 Tech

Nick Hayes June 4, 2018

The Forrester Tech Tide™: Risk And Compliance Management, Q2 2018 We recently published our Tech Tide™ report outlining 14 key risk and compliance technologies to track in 2018. One of the challenging parts of this research is setting the right scope. We found risk and compliance technology everywhere, covering every industry, region, and niche use case. […]

Read More

Introducing Forrester’s Asset Intelligence Model (AIM) For Asset Management

Josh Zelonis May 7, 2018

During my presentation at RSA Conference 2018 this year, I discussed what I refer to as the “Heisenberg Uncertainty Principle of Asset Management,” which states that it’s impossible to maintain an asset inventory list in a constantly evolving environment. Think of it this way: Your IT infrastructure is probably a lot like a giant jelly […]

Read More

Early Horror Stories Of The Data Economy

Jeff Pollard May 3, 2018

When salacious tales of Cambridge Analytica’s activities emerged in 2018, we thought the company was finished. The many on-air discussions of illegal activities, law enforcement warrants, legal action threats from partners, and questionable ethics appeared to doom it. We then saw multiple suspensions and resignations, and on May 2, Cambridge Analytica announced it would file […]

Read More

Why Is One Woman Not Good Enough?

Claire O'Malley May 1, 2018

This weekend, The New York Times released a story detailing a sexist, toxic culture that’s been tormenting Nike employees for years. The story shares instances of sexist comments, work trips to strip clubs, sexually graphic conversations, and unwanted advances that’ve forced many women to quit over the years. But did they go to HR? Yes. […]

Read More