Claire   O'Malley

Claire O'Malley

Researcher Serving Security & Risk Professionals

Claire serves Security & Risk (S&R) Professionals. Her research supports governance, risk, and compliance (GRC) initiatives, security program governance, the adoption of security frameworks, and the sourcing of security services. She also helps clients identify and evaluate geopolitical risk and its implications on their cybersecurity posture.

Previous Work Experience

Prior to her role as a researcher, Claire served as senior research associate on the S&R team. During that time, Claire supported analysts with research on GRC, security program governance, and overall security market trends.

Education

Claire earned a B.A. in international relations and political science from The College Of Wooster. She also has a minor in Latin American studies.

Claire O'Malley

Researcher Serving Security & Risk Professionals

Claire serves Security & Risk (S&R) Professionals. Her research supports governance, risk, and compliance (GRC) initiatives, security program governance, the adoption of security frameworks, and the sourcing of security services. She also helps clients identify and evaluate geopolitical risk and its implications on their cybersecurity posture.

Previous Work Experience

Prior to her role as a researcher, Claire served as senior research associate on the S&R team. During that time, Claire supported analysts with research on GRC, security program governance, and overall security market trends.

Education

Claire earned a B.A. in international relations and political science from The College Of Wooster. She also has a minor in Latin American studies.

Claire O'Malley's Research

Most RecentMost Popular
  • For Security & Risk Professionals

    REPORT: The Forrester Wave™: Global Cybersecurity Consulting Providers, Q2 2019

    Tools And Technology: The S&R Practice Playbook

    May 1, 2019 Jeff Pollard, Claire O'Malley

    In our 23-criterion evaluation of global cybersecurity consulting providers, we identified the 14 most significant ones — Accenture, BAE Systems, Booz Allen Hamilton, Crowe, Deloitte, EY, IBM, KPMG, NTT, Optiv, PwC, Rapid7, Secureworks, Wipro — and researched, analyzed, and scored them. This report shows how each provider measures up and helps security and risk professionals select the right one for their needs.

  • For Security & Risk Professionals

    REPORT: Lessons Learned: Managed Security Services, 2019

    Critical Insights From Forrester Wave™ Customer References Every Security Leader Should Know

    April 16, 2019 Jeff Pollard, Claire O'Malley, Paul McKay, Jinan Budge

    Despite the maturity of the managed security services provider (MSSP) market, security and risk pros and vendors far too often fail to sync up as true, successful partners. This report delves into the lessons learned from these less-than-successful engagements and explores common characteristics of the best MSSP relationships across varying vendor and customer types.

  • For Security & Risk Professionals

    REPORT: Avoid Corporate Scandal Caused By The Surveillance Economy

    A Guide For CISOs To Stop Unethical Surveillance Tactics Before They Start

    April 12, 2019 Jeff Pollard, Claire O'Malley

    Welcome to the era of widespread personal surveillance. Organizations have joined the government in collecting, analyzing, and storing oceans of personal data. The private sector is fully engaged in economically endorsed spying that is enabled by tech, encouraged by unscrupulous advertisers, and made difficult for customers to escape. In this report, we help security and risk leaders guide their firms to compete ethically against those using surveillance to discriminate, manipulate emotions, and modify behavior.

  • For Security & Risk Professionals

    REPORT: The Business Case For Security Awareness And Training

    How To Measure Changes In Security Behavior And Culture

    April 11, 2019 Jinan Budge, Claire O'Malley

    Everyone has long recognized the importance of the human element to cybersecurity, yet we still see staff acting unwisely and inviting threat actors into our networks. It's clear that something isn't working. Historically, security awareness and training (SA&T) efforts have been half-hearted and investment in more sophisticated solutions has been limited. But done right, SA&T initiatives can foster security-aware behaviors and change the culture throughout your organization. This report shows security and risk (S&R) pros how to measure the benefit of SA&T initiatives and solutions to justify more investment. This is an update of a previously published report; Forrester reviews and update it periodically for continued relevance and accuracy.

  • For Security & Risk Professionals

    REPORT: Harden Your Human Firewall

    Engagement And Communication Tactics That Strengthen Security Culture

    March 25, 2019 Jinan Budge, Claire O'Malley

    Building a strong security culture is no easy task. It requires strategy, vision, people, and the right attitude to change behavior and set a cultural shift in motion. This report highlights some of the best communication and engagement methods that security leaders have used to instill a culture of security among executives, business and technology leaders, employees, and customers. CISOs can use this catalog of methods to move beyond online training courses and more effectively engage the hearts and minds of their key constituents. This is an update of a previously published report; Forrester reviews and updates it periodically to ensure continued relevance and accuracy. This version was updated to include strategies and tactics that CISOs and their teams can use to educate and train stakeholder groups.

View all of Claire O'Malley's Research

Clients Who Work With Claire O'Malley Also Work With:

View all related analysts