In light of the 2020 SolarWinds compromise that affected a substantial number of US government agencies, Microsoft, and FireEye, it’s tempting in 2021 to focus on defending against supply chain threats. But S&R pros should realize that supply chain attacks like SolarWinds and 2017’s NotPetya are the exceptions — not the rule. Bolster your organization’s reputation for competence by combatting the increase in pandemic false narratives, insider threats, fraud, and scammers to prevent employees from falling victim to them. The COVID-19 pandemic has brought on many other trends in the cyberthreat landscape, and these will increase in 2021 until the world reaches the “next normal” via herd immunity.

+1

Brian Kime

,

Andras Cser

,

Enza Iannopollo

,

Jeff Pollard

,

Sandy Carielli

The compliance pressure on security, risk, and privacy professionals is growing. New and evolving privacy regulations are emerging daily, and regulators’ abilities to levy hefty fines are expanding, along with business stakeholders’ expectations that their business meets the rules. But compliance is only a part of the goals that privacy and data protection programs must deliver. From increasing business efficiency, to supporting strategic business decisions, to promoting customer and employee trust, privacy and data protection programs play a fundamental role in delivering the trusted business. This report helps security, risk and privacy professionals develop a vision for their programs and guides them through a wealth of available resources to design, execute, and optimize their strategies.

Enza Iannopollo

Privacy and data protection programs are designed to deliver a range of objectives, from meeting compliance requirements to enabling smarter business decisions and building trust across the ecosystem. The Forrester ladder of privacy competitive advantage identifies five different objectives that your privacy and data protection program can aim to deliver. To learn whether your program is well equipped to achieve each objective, complete our 15-minute questionnaire. This report will align the results of the assessment of your privacy and data protection program with its level of maturity and specify competencies to strengthen to move to the next level.

Enza Iannopollo

The shift to a future fit chief privacy officer (CPO) is underway, with CPOs moving from reporting to legal with a compliance charter to reporting directly to the CEO or board of directors. Future fit CPOs can effectively operationalize privacy programs, create stronger business connections, and seize the opportunity to use privacy and data protection to address customer and employee demands. Future fit CPOs must evolve their profile quickly and become adaptive, creative, and resilient to adequately respond to future privacy and data protection challenges and opportunities.

Enza Iannopollo

Keeping up with evolving regulatory requirements is a top challenge for companies around the world. To help, we created an interactive global map of privacy rights and regulations, which provides S&R and privacy professionals with a rating of the privacy regime and offers guidance on the relevant privacy regulations of 101 countries around the world. Due to the dynamic nature of data protection legislation, we update the map whenever there are significant changes to relevant legislation. Use this map to gather insights on the privacy regulations of over 100 countries and get a fast understanding of the degree of protection each regime offers.

Enza Iannopollo

,

Elsa Pikulik

Faced with increasing uncertainty, individuals’ trust is more fragile and volatile than ever. However, firms must bring about this trust for customers to follow them as they create and deliver their next generations of products, services, and experiences. With a robust privacy and data protection program, security, risk, and privacy professionals can help their firms solve this tension and become more trusted businesses. The Forrester Ladder Of Privacy Competitive Advantage helps security, risk, and privacy pros design, execute, and optimize their programs, from defining clear objectives to effectively meeting compliance requirements and delivering sound business outcomes.

Enza Iannopollo