Claire   O'Malley

Claire O'Malley

Researcher Serving Security & Risk Professionals

Claire serves Security & Risk (S&R) Professionals. Her research supports governance, risk, and compliance (GRC) initiatives, security program governance, the adoption of security frameworks, and the sourcing of security services. She also helps clients identify and evaluate geopolitical risk and its implications on their cybersecurity posture.

Previous Work Experience

Prior to her role as a researcher, Claire served as senior research associate on the S&R team. During that time, Claire supported analysts with research on GRC, security program governance, and overall security market trends.

Education

Claire earned a B.A. in international relations and political science from The College Of Wooster. She also has a minor in Latin American studies.

Claire O'Malley

Researcher Serving Security & Risk Professionals

Claire serves Security & Risk (S&R) Professionals. Her research supports governance, risk, and compliance (GRC) initiatives, security program governance, the adoption of security frameworks, and the sourcing of security services. She also helps clients identify and evaluate geopolitical risk and its implications on their cybersecurity posture.

Previous Work Experience

Prior to her role as a researcher, Claire served as senior research associate on the S&R team. During that time, Claire supported analysts with research on GRC, security program governance, and overall security market trends.

Education

Claire earned a B.A. in international relations and political science from The College Of Wooster. She also has a minor in Latin American studies.

Claire O'Malley's Research

Most RecentMost Popular
  • For Security & Risk Professionals

    REPORT: Best Practices: Mitigating Insider Threats

    Processes: The Security Architecture And Operations Playbook

    November 2, 2017 Joseph Blankenship, Claire O'Malley

    Whether accidental or malicious, insider threat incidents can result in financial fraud, privacy abuses, intellectual property theft, or damage to infrastructure. It's difficult for security pros to detect this suspicious activity because insiders need to have privileged access to data in order to do their jobs. Since insiders are people and, therefore, entitled to privacy and due process, security pros must handle these incidents with greater care than external threats. This report describes how to build an insider threat program. This is an update of a previously published report; Forrester reviews and updates it periodically for continued relevance and accuracy.

  • For Security & Risk Professionals

    REPORT: Choose The Right Technologies To Support Your GRC Program

    Tools And Technology: The Governance, Risk, And Compliance Playbook

    October 31, 2017 Renee Murphy, Claire O'Malley

    There comes a point in any GRC program when the massively complex efforts involved become too cumbersome to manage in separate systems and manual processes. Even if it were possible, there would be no headroom to generate any real business value. This report outlines the tools and technologies available to help risk management professionals efficiently manage the array of data points and processes required to meet their organization's risk and compliance needs — and provide business benefits along the way. Forrester updates this report regularly for accuracy and relevance.

  • For Security & Risk Professionals

    REPORT: Vendor Landscape: Third-Party Risk Intelligence

    Products Vie To Augment Your Survey-Based Program

    October 20, 2017Claire O'Malley, Nick Hayes

    Increasing business reliance on third-party ecosystems, coupled with worsening market volatility and threats, is forcing risk professionals to manage third-party risk at a new level. Point-in-time risk assessments no longer provide enough timely, relevant data to support effective risk management efforts. In response, third-party risk intelligence (TPRI) solutions enrich internal assessment data with external information and analysis. This vendor landscape examines the market for TPRI solutions.

  • For Security & Risk Professionals

    REPORT: The Forrester Wave™: Information Security Consulting Services, Q3 2017

    The Best Firms Are Helping CISOs Secure Digital Transformation

    September 28, 2017 Jeff Pollard, Claire O'Malley

    In our 26 criteria evaluation of information security consulting services providers, we identified the 15 most significant ones — Accenture, Atos, BAE Systems, Deloitte, DXC Technology, EY, IBM, KPMG, Leidos, Optiv, Protiviti, PwC, SecureWorks, Verizon, and Wipro — and researched, analyzed, and scored them. This report shows how each provider measures up, to help security and risk professionals make the right choice.

  • For Security & Risk Professionals

    REPORT: Assess Your Exposure To Geopolitical Cyber Risk

    How To Identify The Impacts Of Geopolitical Dynamics Across Your Organization

    July 26, 2017Claire O'Malley, Jeff Pollard, Joseph Blankenship

    Geopolitical tensions around the world are spawning nearly constant cyberattacks on unprepared private sector firms. These cyberattacks result in millions of dollars in lost customer trust, as well as physical, virtual, and reputational damages. In this report, we introduce a way for CISOs to identify characteristics of their firm that might expose it to cybersecurity risks stemming from geopolitical dynamics.

View all of Claire O'Malley's Research

Clients Who Work With Claire O'Malley Also Work With:

View all related analysts