Forrester: - Making Leaders Successful Every Day

Event Overview

In 2010, security and risk management professionals will face a new landscape — and unlike any we’ve seen before. We’ve been discussing “change” for years: how the future of IT will bring dramatic changes to workplace dynamics, sourcing models, and application portfolios. But this year will be different. The confluence of the changing threat landscape, economy, and new technology requirements are forcing more change than we’ve seen in a decade. We need to move beyond discussions of the economy plunging into freefall and the resulting decrease in budgets, jobs, and discretionary security projects. Instead, you need to understand how to navigate this new security reality and continue to drive the business forward. You must move beyond focusing on security for the rapidly changing technology and instead focus on mastering two major shifts: 1) a shift in business expectations; and 2) a shift in ownership.

Forrester’s Security Forum EMEA will bring together industry experts and analysts to hold practical sessions, panels, and workshops on today’s most difficult security and risk management struggles. Together, we will work to rethink the role of security within your enterprise by finding ways to get close to the business, create efficiencies with GRC, establish the right set of priorities, and implement an architecture that responds to these security shifts.

KEY ISSUES THAT SECURITY FORUM WILL ADDRESS

Every keynote, session, panel, and one-on-one interaction with analysts will help you explore how your role as a CISOs, information security, or risk management professional has shifted. The entire event — from keynotes to track sessions and from sponsors to networking events — is designed with these shifts in mind. Together, we’ll help you rethink your practice to account for the:

• Shift in expectations. In the next 12 months, you’ll need to modernize your security & risk management practice — in a world where security budgets are flat or down. You must reevaluate how you are communicating with your business peers, streamline your organizational structure, examine your staff to make sure you’re hiring and developing the right security talent, and even reassess your own skills and leadership capabilities. In this track, we will help you realign expectations, by presenting the latest best practices on security and risk management org structures; governance, risk, and compliance (GRC); and improved metrics that measure and demonstrate value to the business. We’ll also help you identify the emerging skill gaps and help you keep and recruit top talent.
• Shift in ownership. A new generation of outsourcing and the consumerization of IT are usurping control from IT. The introduction of cloud computing gives IT the flexibility to tactically outsource IT services. At the same time, your workforce is demanding more flexibility and employees sporting consumer-grade gear are eroding traditional security controls. The result? You don’t own your data anymore. Moreover, enterprises know the weakening security perimeter is now longer sufficient for companies to embrace cloud computing, hosted services, Web 2.0, consumer devices, and virtualized assets. To help, we’ll get you up to speed on how to: govern and secure data housed with external providers and employees; rethink new outsourcing and employee contracts; embrace Tech Populism; extend audit controls to third parties; and determine which security services belong in the cloud.

KEY QUESTIONS THIS FORUM WILL ANSWER

• How do you retune your security and risk management practice when your budget is flat or down?
• What are the best and worst security metrics to demonstrate value to the business?
• Where can you create efficiencies through a retuned governance, risk, and compliance (GRC) effort?
• How do you ensure cloud computing and outsourcing partners have adequate security controls?
• Should your security controls extend to workers bringing consumer-grade devices like iPhones, netbooks, and Google Apps into the enterprise?
• Are you liable for securing information that resides on non-IT controlled servers and PCs?
• Which skills should you and your staff develop?
• What’s the best security architecture that balances flexibility with operational efficiency?

Who Should Attend?

• Senior-level IT and information security executives
• Executives and senior-level practitioners responsible for operational risk, compliance, or privacy
• Sourcing and vendor management professionals looking to outsource or use MSSPs
• Information & knowledge management and infrastructure professionals looking to manage and secure data on non-corporate assets

Forrester's Security Forum is aimed at improving the effectiveness and success of your role. This event draws attendance from the following roles:

• Security & Risk professionals
• Infrastructure & Operations professionals
• CIOs
• Enterprise Architecture professionals

Why Attend?

THE FORRESTER EVENT DIFFERENCE

• The quality of the Forrester keynotes — Presentations are backed by thousands of interactions with technology leaders, business executives, and vendors.
• Exclusive audiences — Forrester Forum attendees include IT executives and practitioners from leading IT organizations and global companies.
• Integration of organizational, technological, and business issues — Forrester Forums provide a comprehensive understanding of the challenges ahead and how your company can overcome them.
• One-on-ones with Forrester analysts — Forrester Forum attendees can speak one-on-one with Forrester analysts about all aspects of security, from selecting technology to building sustainable security processes and organizations.
• Practical advice — Forrester provides attendees with clear short- and long-term recommendations as well as tools and frameworks that can be put immediately into action