Trevor   Lyness

Trevor Lyness

Researcher Serving Security & Risk Professionals

Trevor is a researcher serving security and risk professionals. His research helps clients understand the potential business impacts of security breaches and risk events. This includes topics such as cyber risk quantification, cyberinsurance, cybersecurity risk ratings, and emerging risks related to data integrity.

Previous Work Experience

As a research associate on the security and risk team, Trevor supported analysts in their research and advisory efforts on a wide range of security and risk topics, including application security, security services, security program governance, and risk intelligence. Prior to Forrester, Trevor worked at a market research firm specializing in healthcare.

Education

Trevor earned a B.A. in financial economics from the University of Rochester, along with a certificate of mathematical modeling in political science and economics.

Trevor Lyness

Researcher Serving Security & Risk Professionals

Trevor is a researcher serving security and risk professionals. His research helps clients understand the potential business impacts of security breaches and risk events. This includes topics such as cyber risk quantification, cyberinsurance, cybersecurity risk ratings, and emerging risks related to data integrity.

Previous Work Experience

As a research associate on the security and risk team, Trevor supported analysts in their research and advisory efforts on a wide range of security and risk topics, including application security, security services, security program governance, and risk intelligence. Prior to Forrester, Trevor worked at a market research firm specializing in healthcare.

Education

Trevor earned a B.A. in financial economics from the University of Rochester, along with a certificate of mathematical modeling in political science and economics.

Trevor Lyness's Research

Most RecentMost Popular
  • For Security & Risk Professionals

    REPORT: Show, Don't Tell, Your Developers How To Write Secure Code

    Use Application Security Testing To Educate Your Developers

    April 19, 2019 Amy DeMartine, Trevor Lyness

    Applications are the most frequent attack vector for companies; as a result, security pros made application security their top priority in 2019. Application security can only improve, however, if developers either code securely or remediate existing security flaws, and, unfortunately, they aren't trained with proper security knowhow. Security pros should use this report to understand how they can overcome this education shortfall and empower developers to secure applications from the start of the coding process.

  • For Security & Risk Professionals

    REPORT: The Digital Risk Protection Market In 2019

    The First Cyber Intelligence Capability You Should Invest In

    April 19, 2019 Josh Zelonis, Trevor Lyness

    This report is a deep dive into the digital risk protection market. We review where we see the market evolving as well as the different types of buyers and use cases for digital risk protection services. Security professionals can use this report to determine how digital risk protection can best suit the needs of their business.

  • For CIO Professionals

    REPORT: Benchmark Your Cybersecurity And Privacy Maturity, 2019

    The Benchmark Report In The Cybersecurity And Privacy Playbook

    January 30, 2019Christopher McClean, Trevor Lyness, Stephanie Balaouras

    This data-driven report examines the maturity of security and privacy programs at companies around the world. It then goes further to examine how and why firms that are mature look different from those that are not. CIOs can use this report to benchmark their cybersecurity and privacy programs against their peers, as well as learn the first steps necessary to improving their posture.

  • For Security & Risk Professionals

    REPORT: The State Of Risk Management 2018

    Benchmarks: The Governance, Risk, And Compliance Playbook

    November 30, 2018Christopher McClean, Trevor Lyness

    Executives must take big bets on new technologies, business models, and emerging markets to stay ahead of the fast pace of competition. With so much at stake and so many public examples of corporate failures, a formal risk management program seems clearly worthwhile, and companies that have one see direct benefits. However, barriers persist, and adoption has been relatively slow. This report examines how risk professionals can overcome skepticism and build a program that will help guide their organization through rapid market evolution and disruption.

  • For Security & Risk Professionals

    REPORT: The Forrester New Wave™: Cybersecurity Risk Rating Solutions, Q4 2018

    The Nine Providers That Matter Most And How They Stack Up

    November 13, 2018Nick Hayes, Trevor Lyness

    In Forrester's evaluation of the emerging market for cybersecurity risk rating solutions, we identified the nine most significant providers in the category — BitSight, FICO, iTrust, NormShield, Panorays, Prevalent, RiskRecon, SecurityScorecard, and UpGuard — and evaluated them. This report details our findings about how well each vendor scored against 10 criteria and where they stand in relation to each other. Security and risk (S&R) professionals can use this review to select the right partner for their cybersecurity risk rating solution needs.

View all of Trevor Lyness's Research

Clients Who Work With Trevor Lyness Also Work With:

View all related analysts