Amy   DeMartine

Amy DeMartine

Principal Analyst Serving Security & Risk Professionals

Amy helps security and risk professionals transform their current software and application security practices to support continuous delivery and improvement, focusing on strong partnerships with application development, operations, and business teams. Her research covers topics such as proactive security design, security testing in the software delivery life cycle, protection of applications in production environments, and remediation of hardware and software flaws.

Previous Work Experience

In her previous role at Forrester, Amy served infrastructure and operations professionals, covering the strategy, design, organization, and implementation of modern service delivery, including continuous delivery, DevOps, and SecureOps. She has more than 20 years of experience in product management, product and technical marketing, development, and operations roles. Her previous experience includes positions at BMC and HP, where she was responsible for driving IT management software products from conception through the product life cycle, all with the purpose of enabling technology professionals to solve their most pressing issues.

Education

Amy holds a master's degree in telecommunications and a bachelor's degree in electrical and computer engineering from the University of Colorado.

Amy DeMartine

Principal Analyst Serving Security & Risk Professionals

Amy helps security and risk professionals transform their current software and application security practices to support continuous delivery and improvement, focusing on strong partnerships with application development, operations, and business teams. Her research covers topics such as proactive security design, security testing in the software delivery life cycle, protection of applications in production environments, and remediation of hardware and software flaws.

Previous Work Experience

In her previous role at Forrester, Amy served infrastructure and operations professionals, covering the strategy, design, organization, and implementation of modern service delivery, including continuous delivery, DevOps, and SecureOps. She has more than 20 years of experience in product management, product and technical marketing, development, and operations roles. Her previous experience includes positions at BMC and HP, where she was responsible for driving IT management software products from conception through the product life cycle, all with the purpose of enabling technology professionals to solve their most pressing issues.

Education

Amy holds a master's degree in telecommunications and a bachelor's degree in electrical and computer engineering from the University of Colorado.

Amy DeMartine's Research

Most RecentMost Popular
  • For Security & Risk Professionals

    REPORT: Show, Don't Tell, Your Developers How To Write Secure Code

    Use Application Security Testing To Educate Your Developers

    April 19, 2019Amy DeMartine, Trevor Lyness

    Applications are the most frequent attack vector for companies; as a result, security pros made application security their top priority in 2019. Application security can only improve, however, if developers either code securely or remediate existing security flaws, and, unfortunately, they aren't trained with proper security knowhow. Security pros should use this report to understand how they can overcome this education shortfall and empower developers to secure applications from the start of the coding process.

  • For Security & Risk Professionals

    REPORT: The Forrester Wave™: Software Composition Analysis, Q2 2019

    The 10 Providers That Matter Most And How They Stack Up

    April 8, 2019Amy DeMartine

    In our 33-criterion evaluation of software composition analysis providers, we identified the 10 most significant ones — Flexera, FOSSA, GitLab, JFrog, Snyk, Sonatype, Synopsys, Veracode, WhiteHat Security, and WhiteSource — and researched, analyzed, and scored them. This report shows how each provider measures up and helps security professionals select the right one for their needs.

  • For Security & Risk Professionals

    REPORT: Top Recommendations For Your Security Program, 2019

    Landscape: The S&R Practice Playbook

    March 25, 2019 Paul McKay, Jeff Pollard, Jinan Budge, Joseph Blankenship, Andras Cser, Merritt Maxim, Amy DeMartine, Claire O'Malley

    Each year, Forrester outlines the most important recommendations for your security strategy for the coming 12 months. We base these recommendations on thousands of client inquiries and interactions, consulting engagements, and dozens of primary research interviews with chief information security officers (CISOs), security vendors, and major security consultancies and service providers. CISOs: Leverage this report to guide your security program strategy and prioritize changes to security architecture and operations for the coming year.

  • For Security & Risk Professionals

    REPORT: Throw Away Your Current Application Security Metrics

    Match Application Security Metrics To Developer Speed

    March 1, 2019Amy DeMartine, Jeff Pollard

    Applications underpin customer engagement, but they also are the top external attack method for breaches. To avoid launching efforts that waste time, effort, and money, security leaders need application security metrics that generate insights and help decision making. Security pros should use this report to define application security metrics that are traceable to business objectives and understand what decisions to make, how to make them, and what the consequences are.

  • For Security & Risk Professionals

    REPORT: The State Of Application Security, 2019

    Organizations Are Rushing To Protect Their Applications With Automation

    February 27, 2019Amy DeMartine

    Application weaknesses and software vulnerabilities continue to be the most common means by which cybercriminals carry out external attacks. Given this has been the case for years, how can security leaders better thwart malicious attackers targeting applications? Many organizations are planning major investments in prerelease testing tools and solutions to protect apps in production. Security leaders should read this report to understand how their peers approach application security and use it to help guide improvements in their own programs.

View all of Amy DeMartine's Research

Clients Who Work With Amy DeMartine Also Work With:

View all related analysts

Connect

Brief Our Analysts

Upcoming Events

Webinar: Protect Against Bad Bots That Are Trying To Kill Your Customer Experience

Date: June 18, 2019
Time: 11:00 AM-12:00 PM Eastern Standard Time
Register
View all upcoming events