For Security & Risk Professionals

Know Your Code: How Static Analysis Tools Make Applications More Secure

by Chenxi Wang, Ph.D., Andrew Jaquith, November 20, 2009

Many companies, besieged by audit findings and application vulnerabilities, recognize the benefits of eliminating security vulnerabilities early in the software life cycle. For this reason, static analysis technologies for analyzing code-level security . . .

For Security & Risk Professionals

Selecting Data Protection Technologies

Answer Four Key Questions Before Spending Time And Treasure

by Andrew Jaquith, October 28, 2009

Forrester enterprise customers have increasing needs to protect their enterprise data. Not every data protection challenge requires technology to address it. But when effective protection cannot be guaranteed by process compliance alone, technology can . . .

For Security & Risk Professionals

Fear Of A Hyperjacked Planet

Hypervisor Security Flaws Get Press, But Operational Risks Matter More

by Andrew Jaquith, October 16, 2009

Asked to do more with less, CIOs are using virtualization to pack more services into fewer physical boxes, reduce energy consumption, and provide greater flexibility. But security and risk professionals worry that in the headlong rush to embrace virtualization, . . .

For Security & Risk Professionals

IT Security's Critical Role During Layoffs

How To Safeguard Company Data In Difficult Times

by Andrew Jaquith, July 2, 2009

The Gateway Recession of 2009 has brought the prospect of slowing sales and profits — and job losses. Although layoffs are never desirable, they are often necessary. Much of the responsibility for keeping company data safe during layoffs falls to security . . .

For Vendor Strategy Professionals

TechRadar™ For Vendor Strategy Professionals: Database And Server Data Security, Q2 2009

How Vendor Strategists Should View A Critical But Complex Segment Of Security

by Jonathan Penn, Andrew Jaquith, June 9, 2009

The risks of theft, corruption, and abuse have made securing data stored on servers and in databases not only more important and relevant to businesses than ever — but also much harder. To help vendor strategy professionals properly time their investments . . .

For Security & Risk Professionals

TechRadar™ For SRM Professionals: Database And Server Data Security, Q2 2009

Database Monitoring Tools Thrive; Classification Tools Try To Survive

by Andrew Jaquith, June 9, 2009

The risks of theft, corruption, and abuse have made securing data stored on servers and in databases much harder. To help security and risk professionals plan their next decade of investments in server data security, Forrester investigated the current . . .

For Security & Risk Professionals

Market Overview: Security Information Management (SIM)

PCI Gives The SIM Market Its Second Wind, But The Field Will Thin Out In The Years Ahead

by John Kindervag, Andrew Jaquith, April 30, 2009

The security information management (SIM) market has undergone a dramatic transformation in the past five years. After growing to a respectable size in a short period in the early 2000s, the SIM market stagnated until the Payment Card Industry Data Security . . .

For Security & Risk Professionals

Data Security Challenges And Technology Adoption In 2008  (214 KB PPT)

by Andrew Jaquith, April 7, 2009

Data security is the number one priority for today's CISO. The current economic downturn - and the need to protect data from abuse, theft, and corruption - has only heightened the emphasis. But protecting data is a broad challenge and requires that organizations . . .

For Security & Risk Professionals

Inquiry Spotlight: Data Leak Prevention, Q1 2009

by Natalie Lambert, Andrew Jaquith, February 10, 2009

Data security in general and data leak prevention (DLP) in particular are growing concerns among security professionals. Forrester's data indicates that while firms are interested in DLP's future, they are taking a "wait and see" approach to adoption. . . .

For Security & Risk Professionals

Top Data Security Predictions For 2009

Economic Turmoil Will Increase Need For Surveillance, Data Protection Tools

by Andrew Jaquith, Natalie Lambert, January 9, 2009

The economic turmoil in the United States will have resounding consequences for security and risk professionals in 2009. The prospect of laying off an additional 1.4 million workers means that CISOs will clamor for data protection tools to keep their . . .

For Security & Risk Professionals

Data-Centric Security Requires Devolution, Not A Revolution

CISOs Must Revisit The Need To Centrally Control Data Security

by Andrew Jaquith, January 5, 2009

Despite years of investments in technology and processes, protecting enterprise-wide data remains a maddeningly elusive goal for chief information security officers (CISOs). Software-as-a-service (SaaS), Web 2.0 technologies, and consumerized hardware . . .