Allie Mellen

Analyst

Forrester Bio

Author Insights

Blog

CISOs And The Next Era Of Security Visibility: Observability

Jeff Pollard October 18, 2021
For security leaders and practitioners, it seems like developers and IT teams get all the cool toys, and security pros get stuck with the hand-me-downs. Dev was first to cloud, IT followed, and security warily joined in. IT had patch management while security just scanned to see if the patches weren’t there; and security orchestration, […]
Read More
Blog

Announcing The First And Only Evaluative Research On XDR — The Forrester New Wave™: Extended Detection And Response (XDR) Providers, Q4 2021

Allie Mellen October 13, 2021
Over the past three years, there’s been no shortage of hot takes on XDR. From a plethora of vendors across industries to security luminaries laying claim to the term, opinions abound. Yet, until recently, no research established a firm definition of XDR, let alone conducted evaluative research on XDR vendor capabilities. That is why I […]
Read More
Blog

Halloween Comes Early For Syniverse, FB, And Twitch — What We Can Learn From Their Spooky Outages Plus Breaches

Jeff Pollard October 7, 2021
As renowned ghost hunter and solver of mysteries Scooby-Doo would say, “Ruh roh, Raggy!” It looks like more than ghosts are wreaking havoc on haunted networks. We’re less than a full week into October, and Cybersecurity Awareness Month isn’t quite taking shape the way we expected. Ostensibly, orgs decided to pivot and use this time […]
Read More
Blog

What Security Market Definitions Tell Practitioners

Allie Mellen September 29, 2021
One of the biggest challenges of being a security industry analyst is finding when and how to define new market segments. We both had to do this recently — Jeff with managed detection and response and Allie with extended detection and response (XDR). The most common question we get from security vendors confused as to […]
Read More
Blog

Introducing The Forrester New Tech: Extended Detection And Response (XDR) — A Battle Between Precedent And Innovation

Allie Mellen August 2, 2021
Today we released the first Forrester New Tech: Extended Detection And Response (XDR) Providers, Q3 2021. This research gives a market overview of XDR and highlights the value proposition for this emerging technology, the major players in the marketplace, and the primary vendor segments for all 29 vendors that participated. The emergence of XDR has plunged security pros into yet another […]
Read More
Blog

XDR FAQ — Frequently Asked Questions On Extended Detection And Response

Allie Mellen July 22, 2021
Learn about the origin, architecture, and applications of extended detection and response (XDR) from analyst Allie Mellen.
Read More
Blog

It’s Time For The Infosec Industry To Address Gender Bias And Bullying Head On

Jinan Budge July 11, 2021
The week of June 28 was a big one (not in a good way) for showcasing the persistence and depth of harassment and exclusion for women in cybersecurity. Those on infosec social media were flooded with bikini selfies protesting the harassment that a woman received for posting her own bikini selfie. Men and women took […]
Read More
Blog

Forrester’s List Of Ransomware Resources

Jeff Pollard June 24, 2021
With ransomware continuing as a high-impact problem (with seemingly no end in sight), we’ve put together some useful ransomware resources for security practitioners. Security and risk (S&R) pros can use these resources to help prevent, protect, detect, and respond to ransomware outbreaks. The links below are a mixture of Forrester’s own research and third-party links. […]
Read More
Blog

The Top Five Lies Security Vendors Tell About The SIEM

Allie Mellen June 16, 2021
Security information and event management systems aren't what they were a decade ago. Here, we dispel a few common misconceptions.
Read More
Blog

RSAC 2021: No Silver Bullet To Fight Attrition Warfare, Just Resilience

Allie Mellen May 21, 2021
A question I am asked most every day now is, “Will [insert tool, process, or person here] stop the next SolarWinds?” We all know the answer to that question: It’s truly nothing new — that tool, or process, or headcount may help reduce risk, but you can never confidently say you are 100% protected from […]
Read More
Blog

Debunking Infosec Purity And Other Security Myths In The Wake Of Recent Attacks

Sandy Carielli May 21, 2021
Earlier this week, an op-ed published on The Hill sent information security (infosec) Twitter into a tizzy by blaming cybersecurity industry best practices for recent high-profile security breaches. For the security team at Forrester, the op-ed furthered a number of security myths that we felt compelled to bust here. Myth #1: The Best Infosec Pros […]
Read More
Blog

Biden Executive Order Bets Big On Zero Trust For The Future Of US Cybersecurity

Jeff Pollard May 13, 2021
Forrester's security team sifts through the details of the new executive order on cybersecurity and looks forward at its long-term impact.
Read More
Blog

Ransomware: Survive By Outrunning The Guy Next To You

Allie Mellen May 10, 2021
There are two people in a wood, and they run into a bear. The first person gets down on his knees to pray; the second person starts lacing up his boots. The first person asks the second person, “My dear friend, what are you doing? You can’t outrun a bear.” To which the second person […]
Read More
Blog

XDR Defined: Giving Meaning To Extended Detection And Response

Allie Mellen April 28, 2021
Conflicting definitions of extended detection and response (XDR) have plagued cybersecurity tech buyers. Read Forrester's unbiased explanation of what XDR is, its relationship to SIEM, and other common questions.
Read More
Blog

“Winning” MITRE ATT&CK, Losing Sight Of Customers

Jeff Pollard April 22, 2021
Are the results of a MITRE ATT&CK evaluation a good gauge of a vendor's effectiveness? Maybe. Vice President and Principal Analyst Jeff Pollard explains how to use the results in your vendor analysis.
Read More
Blog

National Poetry Month And The Case For Whimsy In Security & Risk

Sandy Carielli April 5, 2021
We all need a bit of whimsy in our lives. This is not just an excuse for a whimsical blog post, though there is that. Whimsy and laughter build bridges. And in the security world, where empathy is a critical resource, whimsy can be a first and recurring step in connecting with the teams outside […]
Read More
Blog

Meet The New Analyst Covering SecOps: Allie Mellen

Allie Mellen February 16, 2021
Tell Us About You I have a background in computer engineering, and over the past 10 years I’ve been in engineering and consulting roles at organizations like MIT and a variety of startups. I live in New York City and love to read, do yoga, and learn new languages. In normal, non-pandemic times, I’m an avid traveler, though that has obviously […]
Read More
Blog

Stop Trying To Take Humans Out Of Security Operations

Allie Mellen February 2, 2021
Security tools cannot do what humans can do. Instead of replacing humans in the security operations center, augment them so they can do what they are good at.
Read More