Alla Valente

At its core, California’s new AI law requires safety protocols, best practices, and key compliance policies, but it stops short of prescribing risk frameworks and imposing legal liabilities. Here’s a closer look at what’s in SB 53.

AEGIS is not just another acronym — it’s now a fully cross-referenced, regulation-aware blueprint for building trust in AI systems.

The fourth outage in five years for AWS’s US-East region was traced to DNS resolution failures that affected many core services. Find out what you should do from both the technology and the supplier risk management side to improve your cloud resilience.

The recent breaches at F5 and SonicWall illustrate how attackers are targeting the very infrastructure that enterprises rely on to secure and deliver digital services.

The Netherlands placing Chinese-owned chipmaker Nexperia under ministerial oversight is a sign that Europe has crossed from passive screening to active control to keep IP and capacity in-region. Find out what this means for CISOs and risk leaders and what steps to take next.

July has marked a defining moment for global AI regulation, as policymakers in both the US and the EU removed or abandoned some heavy roadblocks that stood in the way of laws mandating transparency and regulations enshrining risk management.

For risk professionals, leading through 2025’s volatility has been like living in an “Alice in Wonderland” unreality. Risk teams have never been more important as a function to guide their businesses through challenges such as geopolitical risk events, trade disruption, economic volatility, and regulatory disruption.

Coupa Inspire 2025 unveiled an elevated brand and a new leadership team. Here's the five key insights that came out of the event.

RSAC is the largest cybersecurity conference in the world. Leaders and practitioners across all sectors come together to tackle challenges, all under the maxim of “managing risk.” But what does “risk” actually mean at a security conference? Is it a mythical pursuit? Marketing buzzword? Or generic substitute for “the thing we need to detect/prevent/remediate”? RSAC […]

RSAC Conference 2025 featured the 20th annual Innovation Sandbox competition. Learn more about the entrants and results in this review of the event.

From live goats and puppies to robot dogs and animal costumes, the RSAC Conference 2025 delivered some unexpected surprises. But it also delivered the usual insight into various trends in the security market today. Find out more in this RSAC review.

The recent introduction of US-imposed tariffs has shaken global trade. While economists and financial analysts debate whether this on-again/off-again trade war fits into their model for geopolitical, economic, or supply chain risks, the result is the same: uncertainty and chaos sure to shake up business strategy for the foreseeable future. This new era of volatility […]

While business volatility tests resilience, it also creates opportunities. Learn three ways to make your risk management efforts more targeted and effective.

Litigation has become the default method for companies to resolve disagreements, force accountability, and establish recourse for everything from breach-related failures to contractual disagreements. A recent lawsuit filed by VMware (now owned by Broadcom) against its customer, Siemens’ US operations, for alleged use of unlicensed software is not unique and should serve as a stark […]

Prioritize Foundational Elements Over Decorative Accessories Our springtime urge to clean, redecorate, and renovate has a biological explanation. Turns out that spring’s increased hours of daylight lower our body’s production of melatonin (the hormone that makes you sleepy), which leads to regained energy and inspiration to clean our living environments. For security and risk pros, […]

In under two months of 2025, organizations face a battery of changing regulations, new tariffs, and economic uncertainty … all while trying to stay competitive, remain resilient, and execute on their AI strategy. Here’s the good news: How well your organization deals with risk, crisis, and operations opportunity will largely depend on … you guessed […]

Couldn’t make the recent webinar covering our 2025 technology and security predictions? Check out the webinar replay and read our analysts’ responses to some of the most pressing attendee questions about the year ahead.

Get the highlights from the World Economic Forum’s 2025 Global Risks Report and find out what it means for global risk leaders.

Forrester's security and risk research team breaks down the key highlights and implications of former US President Joe Biden’s 2025 Executive Order (EO) 14144 on strengthening security, improving accountability for software and cloud service providers, and promoting innovation, including use of emerging technologies.