Forrester

For Security & Risk Professionals

Report:The CISO's Guide To Virtualization Security

Get Off The Bench And Look Into Your Virtual Environment

In today's data centers, IT often virtualizes new applications and workloads by default. Virtualization is the norm; deploying a physical server is the exception. The technology is mature and...

• Downloads: 863
• Rating:

For Security & Risk Professionals

Report:Job Description: Security Architect

Organization: The Security Architecture And Operations Playbook

This report outlines the organizational implications of Forrester's solution for security and risk (S&R) executives working to rethink their security architecture and improve the effectiveness of...

• Downloads: 496

For Security & Risk Professionals

Blog:Shoulder Surfing The Friendly Skies

FAIL at 30,000ish feet  When you fly nearly every week, you can get pretty bored on a plane.  When I am sick of working, playing games, or watching movies, my latest distraction is checking...

For Security & Risk Professionals

Client Inquiry:What Are The Best Antivirus Products In The Market?

We're looking for some information about antivirus products. What's the best technology available in the market?

For Security & Risk Professionals

Client Inquiry:Why Don't Some Companies Inspect Outbound HTTPS?

Why don't some companies inspect outbound HTTPS? Are privacy or legal considerations the primary factor?

For Security & Risk Professionals

Blog:An Unexpected RSA Encounter

Last Friday, after a long week of RSA conference events and meetings, I eagerly looked forward to slipping on my headphones and enjoying the relative silence of my flight back to Dallas. As I...

For Security & Risk Professionals

Blog:Incident Response Isn’t About Point Solutions; It’s About An Ecosystem

Today EMC announced the acquisition of Silicium Security.  Silicium’s ECAT product is a malware threat detection and response solution.  ECAT did not adopt the failed signature based...

For Security & Risk Professionals

Blog:Crowdsourcing my RSA panels

The San Francisco RSA conference is now less than two weeks away, and this year I am moderating two great panels. I thought I'd reach out and solicit suggestions for discussion.  ...

For Security & Risk Professionals

Blog:The Content Security Forecast Calls For Clouds

I am very excited to introduce my first Forrester report, "The Content Security Forecast Calls For Clouds."  I wrote the report to help guide your strategy on SaaS based email and web content...

For Security & Risk Professionals

Report:The Content Security Forecast Calls For Clouds

The Benefits Of The SaaS Model Outweigh The Challenges

As the market for software-as-a-service (SaaS) content security continues to mature, security and risk professionals want to know if it's time for their organization to make the transition to the...

• Downloads: 649
• Rating:

For Security & Risk Professionals

Blog:Planning For Failure

We are excited to announce "Planning For Failure," the first collaborative report in a series of new research taking a closer look at incident management and response.  A look back at the...

For Security & Risk Professionals

Client Inquiry:What Are Some Virtualization Security Best Practices?

Does Forrester still recommend the following for securing virtual environments? Enforce zone boundaries with separate hardware; hypervisor hosts should not take on network security functions such as...

For Security & Risk Professionals

Blog:Kim Kardashian And APTs

On Wednesday, American footwear company Skechers agreed to pay the US Federal Trade Commission $40 million. This settlement resulted from a series of commercials that deceived consumers claiming that...

For Security & Risk Professionals

Blog:Virtualization Security, Better Late Than Never

I am excited to announce my latest research, The CISO's Guide To Virtualization Security. This is the first report in a new series focusing on securing virtual environments.  The reduced...

For Security & Risk Professionals

Client Inquiry:How Do Companies Manage Internet Security?

We have several questions: 1) How do companies manage employee Internet access? 2) How do they authenticate employees? 3) How do they block access to unwanted applications? 4) How can we block...

For Security & Risk Professionals

Blog:Dusting Off Our Content Security Crystal Ball

Winter is coming; the year is quickly drawing to a close, and its time to a look back and see how accurate our content security crystal ball was for 2011.  Last year we predicted three trends;...

For Security & Risk Professionals

Blog:Avoid The Information Security Squirrel

"My master made me this collar. He is a good and smart master and he made me this collar so that I may speak. Squirrel!"   In the Pixar film Up, squirrels frequently distract Dug the talking...

For Security & Risk Professionals

Report:Content Security: 2012 Budget And Planning Guide

A Review Of Budgets, Spending Intentions, Technology Adoption, And Key Trends

To help Forrester clients with their content security strategy for 2011, Forrester predicted three significant trends. So how'd we do? We got two correct and one half right. As expected, content...

• Downloads: 509

For Security & Risk Professionals

Report:Five Steps To Build An Effective Threat Intelligence Capability

Tools And Technology: The Security Architecture And Operations Playbook

Against today's mutating threat landscape and sophisticated cybercriminals, security and risk (S&R) professionals are outgunned and outmatched. The traditional strategy of waiting for an alert and...

• Downloads: 483
• Comments: 2
• Rating:

For Security & Risk Professionals

Blog:Observations From Black Hat - More Defense Please

Last week I had the opportunity to attend the 15th annual Black Hat security conference in Las Vegas. I have attended DEFCON in the past, but never Black Hat. The conference has grown significantly...

For Security & Risk Professionals

Blog:The Forrester Wave: Email Content Security

It is with great pleasure that I announce the completion of my first Forrester Wave™: Email Content Security, Q4 2012. I’d like to thank the research associates (Jessica McKee and...

For Security & Risk Professionals

Client Inquiry:How Should We Balance Spam-Filtering Risks?

What standards — if any — exist as to file types to block? Are zip files still viewed as a significant security risk, and if so, how do organizations balance the business need to access...

For Security & Risk Professionals

Blog:Observations on the 2013 Verizon Data Breach Investigations Report

I was very excited to finally get a copy of the much-anticipated 2013 Verizon Data Breach Investigations Report (DBIR.)  I have found the report to be valuable year after year.  This is the...

For Security & Risk Professionals

Report:Top 15 Trends S&R Pros Should Watch: Q2 2013

From frantic security operations problems to the changing threat landscape, CISOs, senior security leaders, and other IT risk management leaders consistently have trouble keeping up with key trends...

• Downloads: 295
• Rating:

For Security & Risk Professionals

Report:The Forrester Wave™: Email Content Security, Q4 2012

The Nine Providers That Matter Most And How They Stack Up

In Forrester's 47-criteria evaluation of email content security vendors, we identified the nine most significant vendors in the category and researched, analyzed, and scored them: Barracuda Networks,...

• Downloads: 469
• Comments: 3
• Rating: