For Security & Risk Professionals

The New Threat Landscape: Proceed With Caution

Understand The New Threat Paradigm To Make Your Responses More Effective

by Khalid Kark, August 13, 2010

The information security threat landscape is changing rapidly, and many security organizations are struggling to keep up with the changing nature, complexity, and scale of attacks. Not only is it important for security managers to keep up with this changing . . .

For Security & Risk Professionals

Securing Smart City Infrastructure

What Security Professionals Need To Know Today About Smart City Initiatives

by Usman Sindhu, August 9, 2010

With the promise of improved citizen services and more efficient use of scarce resources, the smart city trend is picking up momentum across the globe. A "smart city" integrates technology with critical infrastructure components and services to make urban . . .

For Security & Risk Professionals

Introducing The Forrester Information Security Maturity Model

A Framework For Describing And Evaluating A Comprehensive Security Program

by Chris McClean, Khalid Kark, July 27, 2010

Security and risk professionals continue working their way into positions of greater authority and influence in their organizations. However, they still struggle at times to understand the full scope of their responsibilities, prioritize their initiatives, . . .

For Security & Risk Professionals

The Forrester Information Security Maturity Model

by Khalid Kark, Chris McClean, July 27, 2010

The Forrester Information Security Maturity Model is a framework that consists of four main security domains (oversight, technology, process, and people) with 25 functions and 123 low-level assessment components. This model is designed to give clients . . .

For Security & Risk Professionals

The Forrester Wave™: Vulnerability Management, Q2 2010

Qualys Leads; Rapid7, nCircle, McAfee, And Lumension Follow

by Chenxi Wang, Ph.D., July 15, 2010

In Forrester's 53-criteria evaluation of vulnerability management vendors, we found that the market is rife with mature products. Qualys led the pack because of its strong vulnerability assessment capability, forward-thinking strategy, and exceptional . . .

For Vendor Strategy Professionals

Smart Computing Fuels Biometrics Growth

How Biometrics Enable Smart Computing Solutions

by Heidi Shey, July 7, 2010

Biometrics is already a growing market today in a variety of applications. Smart Computing will help to fuel biometrics growth as smart applications call for a greater level of security and accountability in order to be enabled and accepted. As the tech . . .

For CIOs

Do CIOs Care About IT Management Tools?

by Tim DeGennaro, Sharyn Leaver, May 17, 2010

CIOs are constantly working to run IT like a business — focusing on business orientation through capabilities like IT planning, portfolio management, and IT investment optimization. A myriad of vendors — from small niche players to traditional heavyweights . . .

For Security & Risk Professionals

Security Organization 2.0: Building A Robust Security Organization

by Khalid Kark, Rachel A. Dines, May 10, 2010

Over the past few years, as the security organization has had to grapple with an increasingly complex threat landscape and a much more visible role in the organization, the expectations of the business have also significantly increased. The business expects . . .

For Security & Risk Professionals

Use Organizational And Professional Archetypes To Accelerate Security Organization Maturity

by Khalid Kark, May 7, 2010

Forrester has helped hundreds of companies build their security programs and establish effective security organizations. As a result of this experience and numerous client interviews, Forrester has established three prevailing organizational and four . . .

For Security & Risk Professionals

The Security Of B2B: Enabling An Unbounded Enterprise

Rethinking And Redesigning B2B Security Architecture For Today's Tech Innovations

by Usman Sindhu, April 29, 2010

Many security and risk professionals seek to implement fine-grained security controls that span traditional boundaries and perimeters for their organizations. Businesses today have global operations and numerous trusted partners that constantly access . . .

For Security & Risk Professionals

Crisis Communication: Defining Roles And Responsibilities

by Chris McClean, April 28, 2010

As a discipline, crisis communication affects many roles throughout the organization, but there is little agreement on how important it is, how formally it should be addressed, and who should be responsible for it. In an online survey of 345 Disaster . . .

For Security & Risk Professionals

SOC 2.0: Virtualizing Security Operations

Increase Efficiency, Lower Costs, And Improve Security

by John Kindervag, April 20, 2010

Staffing the traditional security operations center (SOC) is expensive. Forrester anticipates that the SOC will become virtualized in the future, in a next-generation transformation that we call "SOC 2.0." SOC 2.0 will not be a physical place or a projection . . .

For Security & Risk Professionals

CISO Handbook: Presenting To The Board

by Khalid Kark, April 12, 2010

Only a few years ago, the vast majority of chief information security officers (CISOs) reported to the CIO. Their task was to run and manage the technical and operational security infrastructure. Reporting was easy: You reported on the operational status . . .

For Vendor Strategy Professionals

New Growth Opportunities In The Consumer Security Market

by Jonathan Penn, April 1, 2010

The consumer IT security market is entering a period of radical transition and disruption. Over the next two years, vendors will evolve their offerings to protect consumers as they fully embrace a more interconnected and service-oriented computing lifestyle. . . .

For Security & Risk Professionals

To Facebook Or Not To Facebook

Effective Management Of Social Media Can Alleviate Security Risks

by Chenxi Wang, Ph.D., March 30, 2010

The inevitable rise of social media use inside enterprises has raised many eyebrows. Corporate security and IT professionals are worried about heightened malware threats as well as increased potential for data loss. While we anticipate that companies . . .

For Market Research Professionals

Technographics Survey Highlights: The Internet Security Landscape In Latin America

by Roxana Strohmenger, March 22, 2010

This highlight deck summarizes the key findings related to online security and privacy from Forrester's Latin American Technographics Online Survey, Q4 2009 (Mexico, Brazil). This is the second survey highlight in a series from the Latin American Technographics . . .

For Technology Sales Enablement Professionals

Banking And Insurance 2010 IT Security Budgets And Spending

by Ellen Carney, March 4, 2010

This data chart summarizes findings from Forrester's Enterprise And SMB Security Survey, North America And Europe, Q3 2009, regarding 2010 security budget and spending plans in the banking and insurance industries.

For eBusiness & Channel Strategy Professionals

How Travel eBusiness Can Persuade More Travelers To Share Valuable Personal Information

Travelers' Faltering Sense Of Security Inhibits Online Sales Success

by Henry H. Harteveldt, Elizabeth Stark, March 3, 2010

Its 2010, the Web should be safe and secure for personal information, right? Wrong. Online privacy is constantly threatened with phishing and malware attacks, and US online leisure travelers are perceptive: Forrester data reveals that 37% of US online . . .

For Technology Sales Enablement Professionals

Banking And Insurance IT Security Roles And Responsibilities

by Ellen Carney, March 2, 2010

This Data Chart highlights findings from Forrester's Enterprise And SMB Security Survey, North America And Europe, Q3 2009, regarding IT security roles and responsibilities within the banking and insurance industries.

For Technology Sales Enablement Professionals

Banking And Insurance Security Priorities, Challenges, And Risks

by Ellen Carney, February 17, 2010

This data chart summarizes findings from Forrester’s Enterprise And SMB Security Survey, North America And Europe, Q3 2009 regarding IT security priorities, challenges, and risks for the banking and insurance industries

For Security & Risk Professionals

Security Organization Trends 2010

by Khalid Kark, Jonathan Penn, February 4, 2010

The scope of IT security continues to expand, and with it the visibility of the security organization is rising. Most security organizations now regularly engage with executives and business managers, either formally or informally, on strategy and prioritization. . . .

For Security & Risk Professionals

Shift Happened In The Strong Authentication Market In 2009

Key Vendors Made Dramatic Moves And Are Looking At A Cloudy Future

by Bill Nagel, February 1, 2010

The strong authentication market is on the move — slowly but surely. Nearly half of the authentication vendors profiled in Forrester's July 2008 market overview have since changed hands. Even those that haven't had a shift in ownership — or seen their . . .

For Market Research Professionals

The State Of Enterprise IT Security And Emerging Trends: 2009 To 2010

Business Data Services North America And Europe

by Jonathan Penn, January 25, 2010

IT security investment has been faring relatively well through the economic downturn, and budgets appear to be strengthening, most notably in the area of new product purchases. Data security and network security top the technology areas of investment . . .

For Vendor Strategy Professionals

The State Of SMB IT Security And Emerging Trends: 2009 To 2010

Business Data Services North America And Europe

by Jonathan Penn, January 25, 2010

Security spending for small and medium-size businesses (SMBs) has been faring relatively well through the economic downturn, and budgets appear to be strengthening, most notably in the area of new product purchases. Network security and data security . . .

For Security & Risk Professionals

Twelve Recommendations For Your 2010 Information Security Strategy

by Khalid Kark, January 11, 2010

As we enter 2010 and look ahead, the challenges we face are very familiar. The technology has been changing as usual, the business has been demanding more and more from security professionals as expected, and we continue to outsource some of our responsibilities. . . .