Amy DeMartine

Principal Analyst serving Security & Risk PROFESSIONALS

Amy helps Security & Risk Professionals transform their current software and application security practices to support continuous delivery and improvement, focusing on strong partnerships with application development, operations, and business teams. Her research covers topics such as proactive security design, security testing in the software delivery life cycle, protection of applications in production environments, and remediation of hardware and software flaws.

Previous Work Experience

In her previous role at Forrester, Amy served Infrastructure & Operations Professionals, covering the strategy, design, organization, and implementation of modern service delivery, including continuous delivery, DevOps, and SecureOps. She has more than 20 years of experience in product management, product and technical marketing, development, and operations roles. Her previous experience includes positions at BMC and HP, where she was responsible for driving IT management software products from conception through the product life cycle, all with the purpose of enabling technology professionals to solve their most pressing issues.


Amy holds a master's degree in telecommunications and a bachelor's degree in electrical and computer engineering from the University of Colorado.

Amy DeMartine's Research

  • For Security & Risk Professionals

    Report: Quick Take: CA Technologies Fills Its DevOps Security Gap With Veracode

    Security and risk (S&R) pros need the benefits of combining the development and operations (DevOps) automatic software delivery pipeline with application security testing to give developers earl...

  • For Security & Risk Professionals

    Report: The Forrester Wave™: Software Composition Analysis, Q1 2017

    In our 38-criteria evaluation of software composition analysis (SCA) providers, we identified the six most significant ones — Black Duck Software, Flexera Software, Sonatype, Synopsys, Veracode,...

  • For Security & Risk Professionals

    Report: Vendor Landscape: Web Application Firewalls

    Security pros started widely adopting web application firewalls (WAFs) back in 2006. During the past 10 years, WAF vendors have evolved their products to make them easier to maintain, more effec...

  • For Infrastructure & Operations Professionals

    Report: Five Steps To Reinforce And Harden Application Security

    Today's cybercriminals are highly skilled, resourceful, and determined. Vulnerabilities such as web server misconfigurations or components that include known vulnerabilities give cybercriminals ...

  • For Security & Risk Professionals

    Report: Secure Applications At The Speed Of DevOps

    DevOps methodologies are increasing the pace of application releases, straining security teams that protect those applications at a time when security expertise is already scarce. Security pros ...

View all of Amy DeMartine's Research

Clients who work with Amy DeMartine also work with: