For Vendor Strategy Professionals

3Com Gives HP Core Networking — And Amps Up Cisco Competition

The Converged Infrastructure Market Heats Up

by Ellen Daley, November 12, 2009

HP announced an agreement yesterday to acquire 3Com for about $2.7 billion. This deal is mostly about market — not product — acquisition. HP gets China (a strong growth market), a good enterprise switch, a solid security product, and a router portfolio. . . .

For Vendor Strategy Professionals

Consumer Security Market Trends, 2009 To 2010: Evolving Threats And Defenses

by Jonathan Penn, November 12, 2009

As the nature of cyber threats has evolved, consumers' definition of security and their expectations of solutions have been changing as well. With the rise of account compromise and identity theft as a primary and highly profitable goal for hackers, protecting . . .

For Security & Risk Professionals

PCI X-Ray: File Integrity Monitoring

by John Kindervag, October 26, 2009

To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .

For Security & Risk Professionals

Fear Of A Hyperjacked Planet

Hypervisor Security Flaws Get Press, But Operational Risks Matter More

by Andrew Jaquith, October 16, 2009

Asked to do more with less, CIOs are using virtualization to pack more services into fewer physical boxes, reduce energy consumption, and provide greater flexibility. But security and risk professionals worry that in the headlong rush to embrace virtualization, . . .

For Application Development & Program Management Professionals

Your Enterprise Database Security Strategy 2010

Stronger Measures Have Become Essential To Defend Against Growing Attacks

by Noel Yuhanna, September 28, 2009

With increasingly sophisticated attacks and rising internal data theft, database security merits a stronger focus that goes beyond traditional authentication, authorization, and access control (AAA). A single intrusion that compromises private data such . . .

For Infrastructure & Operations Professionals

IT Compliance: From Painful To Pleasant

by Khalid Kark, July 31, 2009

With increasing workforce mobility and the extension of the business supply chain globally, organizations are struggling to keep up with increasing corporate and regulatory compliance requirements. Regulations such as the Health Insurance Portability . . .

For Infrastructure & Operations Professionals

Market Overview: Client Management Suites

Evolving Computing Market Shifts Focus To Security And Virtualization

by Natalie Lambert, July 29, 2009

Desktop operations managers are watching their computing environment change. There are now more types of devices and more varieties of operating systems entering the enterprise than ever before. This is leading to an architectural shift, one that moves . . .

For Security & Risk Professionals

Healthcare Security: Ready Or Not, Here It Comes

Applying Five Cardinal Rules Of Information Security To Healthcare Companies

by Khalid Kark, July 24, 2009

The US Congress enacted the Health Insurance Portability and Accountability Act (HIPAA) in 1996. The security and privacy rules took effect in 2003, but none of this really improved the overall state of information security across the healthcare industry. . . .

For Security & Risk Professionals

TechRadar™ For Security & Risk Professionals: Network Threat Mitigation, Q3 2009

by John Kindervag, July 22, 2009

The news is filled with reports of networks attacks and stolen data. Consumers routinely undergo the stress of fraudulent charges or compromised credit cards. Terms such as "botnet" have become part of our vocabulary. As a result, security and risk professionals . . .

For Security & Risk Professionals

TechRadar™ For SRM Professionals: Application Security, Q3 2009

Application Security Comes Of Age Despite A Slowdown In Security Spend

by Chenxi Wang, Ph.D., July 8, 2009

As application-level exploits continue to generate headline news, security professionals increasingly look to application security measures to protect their organizations. To succeed, security professionals must understand the maturity of the various . . .

For Vendor Strategy Professionals

Consumers Turn To Freeware As Their Security Worries Deepen

Consumers Are Getting More Security-Savvy, More Concerned, And Less Trusting

by Jonathan Penn, July 6, 2009

To understand the state of consumers' attitudes and behavior with regard to online security and privacy and how it is changing, Forrester recently surveyed more than 4,600 online adults in North America. We found that consumers' worries about malware, . . .

For Consumer Market Research Professionals

Technographics® Survey Highlights: North American Technographics Emerging Uses Of Technology Online Survey, Q1 2009 (US)  (647 KB PPT)

by Joost van Kruijsdijk, June 23, 2009

This highlight deck summarizes the key findings from Forrester’s North American Technographics Emerging Uses of Technology Online Survey, Q1 2009 (US).

For Infrastructure & Operations Professionals

TechRadar™ For IT Infrastructure And Operations Professionals: Branch Office Technologies, Q2 2009

Core Technologies Ripe For Consolidation And Centralization

by Chris Silva, May 26, 2009

As businesses look to IT for the efficiencies, savings, and streamlining that will improve the bottom line, consolidation of branch office infrastructure represents a distributed but easy-to-optimize area of IT infrastructure. All the technologies included . . .

For Security & Risk Professionals

Application Threat Modeling: Uncover Security Vulnerabilities Before It's Too Late

Using Threat Modeling To Develop More-Secure Applications

by Robert Whiteley, April 22, 2009

Security and risk professionals have long used security threat modeling to find security vulnerabilities. However, many of your application development colleagues don't even know what threat modeling is. By communicating the benefits of threat modeling . . .

For Vendor Strategy Professionals

Market Overview: IT Security In 2009

by Jonathan Penn, April 22, 2009

The big news for the IT security market in 2009 is that it will fare relatively well. Cost and justification pressures are exerting themselves, but through increasing business-level visibility led by data-breach headlines, security spend continues to . . .

For Security & Risk Professionals

PCI X-Ray: IDS And IPS

by John Kindervag, April 8, 2009

To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .

For Security & Risk Professionals

If You Don't Have IPS, You Deserve To Be Hacked

by John Kindervag, April 8, 2009

In the beginning was the alert, but the alert drove everyone crazy so the IT staff quit looking at the logs. That long-gone era represents the glory days of intrusion detection systems (IDS). Clearly, the security industry has evolved beyond the time . . .

For Application Development & Program Management Professionals

Use Threat Modeling To Develop More-Secure Applications

The Payoff Is High For Avoiding Security Vulnerabilities During Development

by Mike Gualtieri, March 10, 2009

Many application architects and developers don't know enough about developing secure applications. Worse, many of them have a naive notion of application security that lulls them into thinking they have all the security bases covered. This means that . . .

For Security & Risk Professionals

Twelve Recommendations For Your 2009 Information Security Strategy

by Khalid Kark, January 20, 2009

Many security predictions paint a doomsday scenario where a crippling cyberattack will leave us all reeling from its effects or Supervisory Control and Data Acquisition (SCADA) systems vulnerabilities will be exploited to play havoc with our national . . .

For Security & Risk Professionals

Case Study: Standard Chartered Bank Uses An MSSP To Optimize Its Security Monitoring

by Thomas Raschke, September 29, 2008

In 2003, Standard Chartered Bank (SCB) took a long, hard look at its security needs. The bank primarily wanted to focus on the value-adding parts of the security cycle, so it decided to outsource the repetitive elements of security monitoring to a managed . . .

For Security & Risk Professionals

Threat Alert: Wireless Is The New Internet

by John Kindervag, August 12, 2008

Until the recent indictment of 11 people for hacking into retailers' wireless networks and stealing more than 40 million credit and debit card accounts, the focus of corporate network teams has been to provide wireless connectivity and availability for . . .

For Security & Risk Professionals

It's Time To Focus On Data Protection

Client Security Purchases Miss The Mark

by Simon Yates, July 31, 2008

Security directors have failed to adapt to the changing security threat landscape. While the prevalence of malicious code has declined, reports of data security breaches have significantly increased. Despite this shift, security directors continue to . . .

For Security & Risk Professionals

European Security Managers Turn Their Gaze Inward In 2008

Key Takeaways From Forrester's Security Forum EMEA

by Bill Nagel, July 25, 2008

Forrester held its second Security Forum EMEA in Amsterdam on April 2 and 3, 2008, with 125 security and risk management (SRM) professionals in attendance discussing how to tackle transformation and achieve excellence in SRM. We asked many of these delegates . . .

For Security & Risk Professionals

The Cyberwarfare Era

Private Sector IT In The Crosshairs

by Geoffrey Turner, July 22, 2008

Cyberwarfare is already here, and private sector information systems are a key battlefield. The US government is in the process of structuring its strategic war fighting capabilities for a cyberwar era on a scale similar to that of the Cold War era. This . . .

For Security & Risk Professionals

Threat Report: The Trends And Changing Landscape Of Malware And Internet Threats

by Chenxi Wang, Ph.D., June 25, 2008

The past year saw significant proliferation and continued evolution of cybercrime on the Internet. Security and risk professionals are increasingly challenged to respond to the dynamic and ever-changing cyberthreats, yet many feel ill-equipped to do so. . . .