Security & Risk
Forrester Analysts
Recent Posts
Planning for failure - Strategies to protect yourself in 2012
Strategic initiatives to protect yourself from security breaches
Last week I did a webcast, Planning for Failure, which makes the assumption that if you haven't been breached, it is inevitable, and you must be able to quickly detect and respond to incidents. An effective response can be the...
January 26, 2012 11:08 AM Read Full Post
Virtualisation security - Better late than never
Security and risk professionals haven't given their virtual environments enough attention
I am excited to announce my latest research, The CISO's Guide To Virtualization Security. This is the first report in a new series focusing on securing virtual environments. The reduced costs and flexibility of virtualisation have led to widespread adoption...
January 25, 2012 4:15 PM Read Full Post
Develop effective security metrics
New research published this month
This month I published a new report on information security metrics, best practices as well as a maturity model to measure your maturity in the reporting process.This report outlines the future look of Forrester's solution for security and risk (S&R)...
January 25, 2012 1:16 PM Read Full Post
Symantec scoops up LiveOffice
Getting into the cloud archiving business is a smart move
Symantec today announced that it has purchased LiveOffice, a privately-held cloud-based archiving vendor, for approximately $115 million. With nearly 20,000 customers, LiveOffice has historically marketed to small and mid-sized financial services firms. Over the past couple of years, however, the...
January 17, 2012 3:47 PM Read Full Post
SCIM cloud provisioning standard reaches a major milestone
New protocols promise substantial savings
I've blogged and published research before about the emerging Simple Cloud Identity Management (SCIM) standard. The SCIM group has just approved Version 1.0. No, it's not your imagination: important standards around loosely coupled identity management really are being developed, tested,...
January 4, 2012 6:55 AM Read Full Post
A European perspective on the USA PATRIOT Act
The law focusses on personal data but IP also matters
The USA PATRIOT Act (more commonly known as “the Patriot Act”) was signed into law by George W Bush on October 26, 2001 as a response to the September 11 attacks. The title of the act (USA PATRIOT) is actually...
December 15, 2011 2:47 PM Read Full Post
InfoSec: Enterprise architecture building codes
Business process architects must see information security as a key design component
There are many types of criminals. These include thrill-seeking hackers, politically motivated hackers, organised criminals after financial gain, and state-sponsored groups after financial gain and intellectual property or both. Any of these have the potential to break these capabilities through...
December 12, 2011 11:01 AM Read Full Post
Forrester Waves on enterprise GRC and IT GRC
Governance, risk, and compliance functions are showing ever tighter collaboration
After months of diligent product and vendor evaluations, we have published The Forrester Wave: Enterprise GRC Platforms, Q4 2011. Also available is The Forrester Wave: IT GRC Platforms, Q4 2011. These two reports feature a total of 20 vendors, all...
December 7, 2011 4:37 PM Read Full Post
Back to basics with passwords
Understanding the theoretical underpinnings of password properties
After a bit of xml display snafu, my report "Breaking Down Entropy And Passwords" is finally live on the Forrester website.This report was inspired by a number of customer inquiries that I had recently on mobile password policies. It struck...
October 24, 2011 4:45 PM Read Full Post
What's holding CISOs back?
Security and risk budgets suffer in the recession
According to our survey data dating back to 2008, despite year after year of high profile security breaches from Heartland Payment Systems to Wikileaks to Sony, security budgets have only increased by single digits. This is hardly enough to keep...
October 3, 2011 2:46 PM Read Full Post
[ 1 ] [ 2 ] [ 3 ] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] ... [ 14 ] [ continued on page 2 >> ]
Powered by the Pagination plugin for Movable Type

Subscribe to this blog