Save or Share this Report

Amy   DeMartine

Amy DeMartine

Principal Analyst Serving Security & Risk Professionals

Amy helps Security & Risk Professionals transform their current software and application security practices to support continuous delivery and improvement, focusing on strong partnerships with application development, operations, and business teams. Her research covers topics such as proactive security design, security testing in the software delivery life cycle, protection of applications in production environments, and remediation of hardware and software flaws.

Previous Work Experience

In her previous role at Forrester, Amy served Infrastructure & Operations Professionals, covering the strategy, design, organization, and implementation of modern service delivery, including continuous delivery, DevOps, and SecureOps. She has more than 20 years of experience in product management, product and technical marketing, development, and operations roles. Her previous experience includes positions at BMC and HP, where she was responsible for driving IT management software products from conception through the product life cycle, all with the purpose of enabling technology professionals to solve their most pressing issues.

Education

Amy holds a master's degree in telecommunications and a bachelor's degree in electrical and computer engineering from the University of Colorado.

Amy DeMartine

Principal Analyst Serving Security & Risk Professionals

Amy helps Security & Risk Professionals transform their current software and application security practices to support continuous delivery and improvement, focusing on strong partnerships with application development, operations, and business teams. Her research covers topics such as proactive security design, security testing in the software delivery life cycle, protection of applications in production environments, and remediation of hardware and software flaws.

Previous Work Experience

In her previous role at Forrester, Amy served Infrastructure & Operations Professionals, covering the strategy, design, organization, and implementation of modern service delivery, including continuous delivery, DevOps, and SecureOps. She has more than 20 years of experience in product management, product and technical marketing, development, and operations roles. Her previous experience includes positions at BMC and HP, where she was responsible for driving IT management software products from conception through the product life cycle, all with the purpose of enabling technology professionals to solve their most pressing issues.

Education

Amy holds a master's degree in telecommunications and a bachelor's degree in electrical and computer engineering from the University of Colorado.

Amy DeMartine's Research

Most RecentMost Popular
  • For Security & Risk Professionals

    REPORT: Vendor Landscape: Runtime Application Self-Protection

    Protect Your Imperfect Code Until It Can Be Fixed

    September 29, 2017Amy DeMartine

    Even with the best prerelease security testing, developers will never write perfectly secure code. Zero-day attacks will continue to target vulnerable open source components, third-party applications, and internally developed code. Web application firewalls provide a helpful protection against such attacks; however, they can only analyze input and output data. Used as a deeper layer of application defense, runtime application self-protection (RASP) tools use insider info of the applications they protect to help security pros more effectively detect and deflect malicious attacks.

  • For Security & Risk Professionals

    REPORT: Secure The Rise Of Intelligent Agents

    Securing Intelligent Agents Will Stress Application Security Basics

    September 14, 2017Amy DeMartine, Jennifer Wise

    Early-stage intelligent agents (IAs) have arrived and are gaining traction among consumers. Leaving behind the direct, detailed commands of their virtual assistant predecessors, IAs will soon see more-advanced artificial intelligence, voice recognition, hardware, partner ecosystems, and data integrations, all to create more hyperpersonalized experiences. It won't be long before customers expect to engage with your business using these IAs, potentially exposing vast amounts of their data and yours. Security pros can use this report to secure IAs by starting with virtual assistants.

  • For Security & Risk Professionals

    REPORT: Assess The Maturity Of Your Application Security Program

    Know What Application Security Functions To Prioritize, And How

    September 14, 2017Amy DeMartine

    Successful attacks on applications continue to prove the ubiquity of software vulnerabilities, and now that applications are releasing faster than ever, the problem will grow much worse if not curtailed. Application security pros must adapt the way they perform prerelease and production application security to increase security in the new model of Agile development and DevOps. Our application security maturity assessment is a prescriptive framework to evaluate maturity level, identify gaps, prioritize improvements, and demonstrate progress.

  • For Security & Risk Professionals

    REPORT: Vendor Landscape: Application Security Testing

    Choose The Right SAST, DAST, MAST, And IAST For Your Firm's Developers

    August 7, 2017Amy DeMartine

    Application releases are getting faster, especially as developers make use of DevOps methodologies to automate releases. Security pros can support and even drive these changes using continuous prerelease application security testing tools. SAST, DAST, and MAST all have their unique testing sweet spots, and all are essential to a comprehensive testing strategy; however, IAST is emerging to eventually replace DAST. This report will help security pros evaluate application security testing tools and address their firms' criteria for these faster releases.

  • For Security & Risk Professionals

    REPORT: TechRadar™: Application Security, Q3 2017

    Application Security Solutions Pivot To Meet Application Conditions

    July 6, 2017Amy DeMartine

    Applications are increasingly the face of interaction between companies and their customers; this includes customer-facing applications, differentiating mobile apps, internet-of-things (IoT) device interfaces, and streamlined back-end processes. Meanwhile, application security technologies continue to evolve based on new developer methodologies, attack vectors, application types, and business needs. Security pros must keep pace with these emerging and rapidly evolving technologies to help their companies deploy apps that improve customer experiences without taking on new risks.

View all of Amy DeMartine's Research

Clients Who Work With Amy DeMartine Also Work With:

View all related analysts