Security & Risk

RSSSubscribe to this blog
About Author

Forrester Research is a technology and market research company that provides pragmatic advice to global leaders in business and technology.

Contact Author

Email Forrester


Recent Posts

Strong authentication: Bring-Your-Own-Token

Here's number three with a bullet

by

In approaching the research for my recently published TechRadarâ„¢ on strong authentication, at first I struggled a bit with overlapping concepts and terminology (as can be seen in the lively discussion that took place over in the Security & Risk...

February 20, 2012 12:09 PM Read Full Post

Tags: bring your own device, bring your own token, byod, byot, forrester, security and risk, token

Rewind and replay for web app vulnerabilities

Why are app developer standards slipping backwards?

by

Security threats develop and evolve with startling rapidity, with the attackers always seeking to stay one step ahead of the S&R professional. The agility of our aggressors is understandable; they do not have the same service-focused restrictions that most organisations...

February 14, 2012 5:19 AM Read Full Post

Tags: application development, applications, careers & hr, forrester, it training, testing, web applications

Managed Security Services Providers - how to make your choice

The market is booming as SMEs look to enhance security

by

I attended two really great presentations at MSPWorld recently. This is a very interesting conference, sponsored by the MSPAlliance[1] and co-hosted with IT-Expo but focused on managed service providers. Both dealt with the issue of MSP (MSSP) valuation. Many...

February 13, 2012 9:44 AM Read Full Post

Tags: forrester, msp alliance, security, security and risk, smb, sme

Planning for failure - Strategies to protect yourself in 2012

Strategic initiatives to protect yourself from security breaches

by

Last week I did a webcast, Planning for Failure, which makes the assumption that if you haven't been breached, it is inevitable, and you must be able to quickly detect and respond to incidents. An effective response can be the...

January 26, 2012 11:08 AM Read Full Post

Tags: security, security and risk

Virtualisation security - Better late than never

Security and risk professionals haven't given their virtual environments enough attention

by

I am excited to announce my latest research, The CISO's Guide To Virtualization Security. This is the first report in a new series focusing on securing virtual environments. The reduced costs and flexibility of virtualisation have led to widespread adoption...

January 25, 2012 4:15 PM Read Full Post

Tags: security, security and risk

Develop effective security metrics

New research published this month

by

This month I published a new report on information security metrics, best practices as well as a maturity model to measure your maturity in the reporting process.This report outlines the future look of Forrester's solution for security and risk (S&R)...

January 25, 2012 1:16 PM Read Full Post

Tags: ciso, forrester, metrics, security, security and risk

Symantec scoops up LiveOffice

Getting into the cloud archiving business is a smart move

by

Symantec today announced that it has purchased LiveOffice, a privately-held cloud-based archiving vendor, for approximately $115 million. With nearly 20,000 customers, LiveOffice has historically marketed to small and mid-sized financial services firms. Over the past couple of years, however, the...

January 17, 2012 3:47 PM Read Full Post

Tags: archive, cloud computing, forrester, it business, storage, symantec

SCIM cloud provisioning standard reaches a major milestone

New protocols promise substantial savings

by

I've blogged and published research before about the emerging Simple Cloud Identity Management (SCIM) standard. The SCIM group has just approved Version 1.0. No, it's not your imagination: important standards around loosely coupled identity management really are being developed, tested,...

January 4, 2012 6:55 AM Read Full Post

Tags: cloud computing, forrester, identity federation, identity provisioning, scim, security and risk

A European perspective on the USA PATRIOT Act

The law focusses on personal data but IP also matters

by

The USA PATRIOT Act (more commonly known as “the Patriot Act”) was signed into law by George W Bush on October 26, 2001 as a response to the September 11 attacks. The title of the act (USA PATRIOT) is actually...

December 15, 2011 2:47 PM Read Full Post

Tags: data protection, forrester, intellectual property, patriot act, security, security and risk

InfoSec: Enterprise architecture building codes

Business process architects must see information security as a key design component

by

There are many types of criminals. These include thrill-seeking hackers, politically motivated hackers, organised criminals after financial gain, and state-sponsored groups after financial gain and intellectual property or both. Any of these have the potential to break these capabilities through...

December 12, 2011 11:01 AM Read Full Post

Tags: enterprise architecture, forrester, information security, infrastructure, security

[ Previous ] [ 2 ] [ 3 ] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ] ... [ 19 ] [ continued on page 7 >> ]

Powered by the Pagination plugin for Movable Type