Renee   Murphy

Renee Murphy

Principal Analyst Serving Security & Risk Professionals

Renee is a principal analyst at Forrester serving Security & Risk Professionals. She covers governance, risk, and compliance (GRC), with a special focus on audit, controls management, information security, and risk management. In this role, she helps Forrester clients strengthen their risk and compliance environments based on her extensive audit experience and technology expertise. Renee is also a frequent speaker at vendor events and industry conferences on subjects such as security and risk best practices and guidance on the implementation of Control Objectives for Information Technology (COBIT).

Previous Work Experience

Renee's previous work experience includes internal and external auditing, security consulting, data center management, network engineering, and compliance program implementations. Her work has spanned financial services, pharmaceuticals, life sciences, entertainment, retail, high-tech, and service industries.

Education

Renee attended The Pennsylvania State University's College of Fine Arts, and she is a member of ISACA, the Institute of Electrical and Electronics Engineers (IEEE), and the International Legal Technology Association (ILTA).

Renee Murphy

Principal Analyst Serving Security & Risk Professionals

Renee is a principal analyst at Forrester serving Security & Risk Professionals. She covers governance, risk, and compliance (GRC), with a special focus on audit, controls management, information security, and risk management. In this role, she helps Forrester clients strengthen their risk and compliance environments based on her extensive audit experience and technology expertise. Renee is also a frequent speaker at vendor events and industry conferences on subjects such as security and risk best practices and guidance on the implementation of Control Objectives for Information Technology (COBIT).

Previous Work Experience

Renee's previous work experience includes internal and external auditing, security consulting, data center management, network engineering, and compliance program implementations. Her work has spanned financial services, pharmaceuticals, life sciences, entertainment, retail, high-tech, and service industries.

Education

Renee attended The Pennsylvania State University's College of Fine Arts, and she is a member of ISACA, the Institute of Electrical and Electronics Engineers (IEEE), and the International Legal Technology Association (ILTA).

Renee Murphy's Research

Most RecentMost Popular
  • For Security & Risk Professionals

    REPORT: Choose The Right Technologies To Support Your GRC Program

    Tools And Technology: The Governance, Risk, And Compliance Playbook

    October 31, 2017Renee Murphy, Claire O'Malley

    There comes a point in any GRC program when the massively complex efforts involved become too cumbersome to manage in separate systems and manual processes. Even if it were possible, there would be no headroom to generate any real business value. This report outlines the tools and technologies available to help risk management professionals efficiently manage the array of data points and processes required to meet their organization's risk and compliance needs — and provide business benefits along the way. Forrester updates this report regularly for accuracy and relevance.

  • For Security & Risk Professionals

    REPORT: Assess Your GRC Program With Forrester's GRC Maturity Model

    Assessment: The Governance, Risk, And Compliance Playbook

    October 24, 2017Renee Murphy, Nick Hayes

    The Forrester GRC Maturity Model helps risk management professionals objectively assess their GRC efforts to identify areas of weakness as well as centers of excellence, then outline a strategy to make appropriate improvements. The model consists of 14 functions and 59 components within the domains of oversight, technology, process, and people, each with detailed assessment criteria to provide a consistent and objective method of evaluation. This is an update of a previously published report; Forrester reviews and updates it periodically for continued relevance and accuracy.

  • For Security & Risk Professionals

    REPORT: Extend Compliance And Risk Management To What Really Matters For Your Business

    Landscape: The Governance, Risk, And Compliance Playbook

    October 16, 2017Renee Murphy

    Risk management professionals should concern themselves with two types of risk: those that threaten the company with losses and fines and those that threaten its long-term viability. To really improve business performance, expand the fundamentals of your GRC program to the aspects of your company that drive success with customer interactions, which will in turn drive growth and revenue for your company. This is an update of a previously published report; Forrester reviews and updates it periodically for continued relevance and accuracy.

  • For Security & Risk Professionals

    REPORT: Measure GRC Performance To Show Processes And Data Reliability

    Performance Management: The Governance, Risk, And Compliance Playbook

    July 27, 2017Renee Murphy

    The more complex a program is, the more difficult it is to maintain it, and the faster and more devastating its breakdown can be. Strong performance management is a way for risk management professionals to monitor their GRC program for continual improvement, alignment to business goals, and strategic value to the organization. This report explains how to continuously manage the performance of your GRC program to help you protect your critical risk and compliance functions from decay. This is an update of a previously published report; Forrester reviews and updates it periodically for continued relevance and accuracy.

  • For Security & Risk Professionals

    REPORT: Build A Governance, Risk, And Compliance Strategy Worthy Of Business Consideration

    Strategic Plan: The Governance, Risk, And Compliance Playbook

    July 11, 2017Renee Murphy

    Governance, risk, and compliance (GRC) are far too often functions of emergency response. To get your team and key stakeholders on board and to show that all your efforts are helping your business perform better, you need a well-defined, documented, and widely visible GRC strategy. This report outlines the challenges you face without a strategy, best-practice examples of companies that have successfully built one, and a checklist of elements necessary for your strategy to stand up to scrutiny at all levels of the business. This is an update of a previously published report; Forrester reviews and updates it periodically for continued relevance and accuracy.

View all of Renee Murphy's Research

Clients Who Work With Renee Murphy Also Work With:

View all related analysts