For Security & Risk Professionals

Know Your Code: How Static Analysis Tools Make Applications More Secure

by Chenxi Wang, Ph.D., Andrew Jaquith, November 20, 2009

Many companies, besieged by audit findings and application vulnerabilities, recognize the benefits of eliminating security vulnerabilities early in the software life cycle. For this reason, static analysis technologies for analyzing code-level security . . .

For Vendor Strategy Professionals

Market Overview: The Advent Of Enterprise Carbon And Energy Management Systems

Sketching The New Opportunities For IT Vendor Strategists

by Christopher Mines, November 17, 2009

A new liability is coming onto the collective balance sheet of companies around the world: carbon. In the context of increasing awareness of the business and societal risks of climate change, corporate carbon emissions (and the energy consumption that . . .

For Infrastructure & Operations Professionals

Client Management Software Adoption Trends, 2009  (445 KB PPT)

by Benjamin Gray, November 17, 2009

This presentation analyzes client management software adoption trends across the North American and European enterprise and SMB market.

For Customer Intelligence Professionals

The Privacy Exchange Disconnect

Marketers Must Show Value For Consumer Information

by Dave Frankland, November 16, 2009

Consumers and marketers have contradictory impressions of the value marketers provide in exchange for the consumer data they collect. Marketers claim they deliver more relevant products, services, and ads based on the consumer information they capture. . . .

For Security & Risk Professionals

Case Study: Baker Tilly Virchow Krause Builds Trust With Strong Authentication

Customer Data Is Accessible Yet Safe Whether Users Are Connected Or Not

by Bill Nagel, November 16, 2009

Matt Jennings at Baker Tilly Virchow Krause needed to overhaul the accounting and advisory firm's security processes and technologies to ensure ongoing regulatory compliance and customer confidence. Replacing the company's use of a single password as . . .

For CIOs

CIOs: Develop A Technology Watch List

The Top 15 Technology Trends To Watch

by Sharyn Leaver, November 13, 2009

As IT executives set out their strategies and plan for 2010 and beyond, they must determine what the top technology trends are for their business and gauge IT's ability to support the next phase of technology innovation and growth. To help, Forrester . . .

For Vendor Strategy Professionals

3Com Gives HP Core Networking — And Amps Up Cisco Competition

The Converged Infrastructure Market Heats Up

by Ellen Daley, November 12, 2009

HP announced an agreement yesterday to acquire 3Com for about $2.7 billion. This deal is mostly about market — not product — acquisition. HP gets China (a strong growth market), a good enterprise switch, a solid security product, and a router portfolio. . . .

For Vendor Strategy Professionals

Consumer Security Market Trends, 2009 To 2010: Evolving Threats And Defenses

by Jonathan Penn, November 12, 2009

As the nature of cyber threats has evolved, consumers' definition of security and their expectations of solutions have been changing as well. With the rise of account compromise and identity theft as a primary and highly profitable goal for hackers, protecting . . .

For Infrastructure & Operations Professionals

State Of Enterprise Disaster Recovery Preparedness: Q3 2009

by Stephanie Balaouras, November 4, 2009

Although disaster recovery (DR) was once considered an expensive insurance policy for rare but catastrophic events such as hurricanes and terrorist activity, Forrester survey data suggests that enterprises across North America and Europe are now moving . . .

For Security & Risk Professionals

Market Overview: Network Access Control (NAC)

Evolving NAC Market Focuses On Features That Provide Operational Efficiency

by Usman Sindhu, November 3, 2009

Network access control (NAC) is high on the security professionals' wish list, but few are able to justify the business case for it. Complex deployments, too many architectural options, and a quickly changing vendor landscape have pushed most NAC deployments . . .

For Security & Risk Professionals

The Forrester Wave™: Identity And Access Management, Q4 2009

Oracle, CA, And IBM Lead, With Novell And Sun Microsystems Close Behind

by Andras Cser, November 3, 2009

In Forrester's 79-criteria evaluation of identity and access management (IAM) vendors, we found that Oracle, CA, and IBM lead the pack because of a rich IAM portfolio (both organically developed and acquired), an understanding of a rapidly changing market, . . .

For Security & Risk Professionals

Cloud Computing Checklist: How Secure Is Your Cloud?  (43 KB XLS)

by Chenxi Wang, Ph.D., October 30, 2009

If your organization is interested in cloud computing, there are some key security and privacy, compliance, and legal issues that you need to broach with the service provider. To help with this process, we've put together a checklist of key issues and . . .

For Customer Intelligence Professionals

Reinforce Privacy Through Full Disclosure

Marketers Must Embrace Privacy To Avoid Consumer Outcry

by John Lovett, Dave Frankland, October 29, 2009

Despite consumer privacy concerns, the vast majority of Web sites from retailers to healthcare providers are actively tracking the behavior of online visitors. This practice is well within the rights of these Web site operators not because they adhere . . .

For Customer Intelligence Professionals

Consumer Privacy Is A Ticking Time Bomb For Customer Intelligence Executives

Consumers Are No Longer Passive About Their Privacy

by Dave Frankland, October 29, 2009

Despite renewed interest from Washington, D.C., regarding consumer privacy, the marketing industry continues to call for self-regulation — a concept that is given shorter shrift following its perceived role in preventing the financial crisis. Given this . . .

For Security & Risk Professionals

Shift In Ownership: Protecting Data Outside Your Four Walls  (1.6 MB PPT)

by Robert Whiteley, October 28, 2009

In September 2009, Forrester hosted a two-day event designed to help security and risk professionals understand the top three shifts impacting their job heading. This document summarizes the key recommendations we made to help master the shift in ownership . . .

For Security & Risk Professionals

Selecting Data Protection Technologies

Answer Four Key Questions Before Spending Time And Treasure

by Andrew Jaquith, October 28, 2009

Forrester enterprise customers have increasing needs to protect their enterprise data. Not every data protection challenge requires technology to address it. But when effective protection cannot be guaranteed by process compliance alone, technology can . . .

For Security & Risk Professionals

Shift In Expectations: Modernizing Your SRM Program  (2 MB PPT)

by Robert Whiteley, October 28, 2009

In September 2009, Forrester hosted a two-day event designed to help security and risk professionals understand the top three shifts impacting their job heading. This document summarizes the key recommendations we made to help master the shift in expectations . . .

For Security & Risk Professionals

Shift In Architecture: Building A Flexible, Compliant Foundation  (1.9 MB PPT)

by Robert Whiteley, October 27, 2009

In September 2009, Forrester hosted a two-day event designed to help security and risk professionals understand the top three shifts impacting their job heading. This document summarizes the key recommendations we made to help master the shift in architecture . . .

For Security & Risk Professionals

PCI X-Ray: File Integrity Monitoring

by John Kindervag, October 26, 2009

To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .

For Security & Risk Professionals

Caveat Emptor: The Best And Worst GRC Platform Customer Experiences

by Chris McClean, October 26, 2009

Governance, risk, and compliance (GRC) programs have a high corporate profile, requiring approval and often participation from top executives. For risk professionals who perform well in the spotlight, that's good news — but failures also attract more . . .

For Security & Risk Professionals

CISO Handbook: How To Plan For A Security Breach

by Khalid Kark, October 22, 2009

Many chief information security officers (CISOs) are forced to respond to security breaches with little knowledge or planning. Not only is it important to have the tools for responding to security breaches, but it's essential to build a detailed response . . .

For Infrastructure & Operations Professionals

The Help Desk Is On The Critical Path For Pandemic/Disaster Recovery

Oft-Overlooked Group Is Key To Business Continuity

by Evelyn Hubbert, Chip Gliedman, October 22, 2009

The designation of the H1N1 flu virus as a pandemic by the World Health Organization (WHO) should, once again, prompt organizations to revisit their business continuity planning processes. However, recent conversations with Forrester clients reveal a . . .

For Infrastructure & Operations Professionals

Twenty Mobile Device Management Best Practices

How To Improve Mobile Support For Your Anytime, Anywhere Workers

by Benjamin Gray, October 21, 2009

As workers become increasingly distributed and mobile, work will no longer be confined to always-connected devices. And as firms onboard this younger and more tech-savvy generation of employees (Millennials), who have loftier mobility expectations of . . .

For Application Development & Program Management Professionals

Smart Grid Technologies: Coming To A Utility Near You

Modern IT And Communications Systems Are Transforming The US Power Industry

by Roy C. Wildeman, October 19, 2009

Today's energy companies face an unprecedented quandary of regulatory requirements, market pressures, and public scrutiny that, in combination, act to disrupt traditional approaches to cutting costs and servicing consumers. With the recent federal stimulus . . .

For Security & Risk Professionals

Fear Of A Hyperjacked Planet

Hypervisor Security Flaws Get Press, But Operational Risks Matter More

by Andrew Jaquith, October 16, 2009

Asked to do more with less, CIOs are using virtualization to pack more services into fewer physical boxes, reduce energy consumption, and provide greater flexibility. But security and risk professionals worry that in the headlong rush to embrace virtualization, . . .