Carlos Rivera

Government agencies at the federal, state, and local levels must prepare for a future where they experience uncertainty, headcount reductions, contract cancellations, and budget cuts. This is gut-wrenchingly difficult to process, yet remaining leaders must figure out how to move forward to serve the mission. For public sector cybersecurity leaders, this is even more paramount. […]

Cybersecurity vendor ThreatLocker recently hosted its fifth annual Zero Trust World (ZTW) conference in Orlando, welcoming attendees from 28 countries to learn about Zero Trust principles and ThreatLocker offerings. Over two days, the event celebrated Zero Trust as a cybersecurity model and the ThreatLocker approach for achieving Zero Trust. Industry leaders, managed service providers, security […]

Forrester's security and risk research team breaks down the key highlights and implications of former US President Joe Biden’s 2025 Executive Order (EO) 14144 on strengthening security, improving accountability for software and cloud service providers, and promoting innovation, including use of emerging technologies.

Zero Trust has become the standard information security model to adopt globally. It’s no longer a question of should; it’s a question of how and where to begin. For some time, the topic of Zero Trust was met with disparaging and opposing views proclaiming it to be another buzzword for vendors to market products. Well, […]

One of the core principles of high-performance IT is alignment. But what we are aligning to differs greatly between the public and private sectors. It’s also important to recognize the cultural and linguistic differences between the private and public sectors. Aligning language in this way helps ensure that everyone is on the same page, which can significantly improve communication, reduce misunderstandings, and lead to more effective initiatives.

Contrary to expectations the enterprise firewall continues to thrive. and vendors have made significant progress in keeping up with rapid innovations. Learn more in this preview of the recently published report, The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024.

Cisco recently announced a new network and cloud security platform, called Hypershield. Find out what benefits it provides and why organizations should pay close attention to its development going forward.

At its recent Cisco Live event, the tech giant made a number of new announcements, detailed plans for its $28 billion Splunk acquisition, and walked through its vision for the future. Get a detailed review in this post.

Learn three areas where enterprise architecture and security architecture collaboration matter most in protecting the trust that organizations hold with customers.

What does the HPE acquisition of Juniper Networks mean for technology leaders and the market overall? Find out in this detailed analysis of the deal.

Get four key takeaways from the DoD's proposed rules for updating the Cybersecurity Maturity Model Certification (CMMC) program.

Get an inside look at some of the highlights and findings from the new Forrester Wave™: Zero Trust Platform Providers, Q3 2023 report.

Zero Trust has seen an increase in adoption over the past few years — Forrester’s Security Survey, 2022, shows that 83% of global large enterprises are reporting that senior leadership has committed their organizations to the adoption of Zero Trust. Aspects of the Zero Trust model continue to be misunderstood, however. The industry is still […]

The common trope, “What came first, the chicken or the egg?” is a question about origins and paradoxical relationships. Security and risk conversations about microsegmentation and microperimeters suffer from a similar dilemma. These two concepts are heavily emphasized in Zero Trust conversations as key components to advance maturity. Security and risk pros confuse the usage […]

Learn the three approaches enterprise firewall vendors are taking to work around a shortage of network security techs.

Zero Trust (ZT) continues to make waves (no pun intended), with US federal agencies now publishing guidance, such as the OMB’s M-22-09 or the DoD’s ZT strategy, for effective implementations, allowing for the government to be viewed as a source of trust in cybersecurity — although ZT is still mired in myths, and these can […]

Network access control (NAC) was first offered in 2006 as a security solution that seemed promising but struggled to gain any interest for its adoption. This only worsened in the wake of anywhere-work and the move to the cloud, as on-premises networks declined in importance. Newer solutions such as Zero Trust network access (ZTNA), which […]

The US Cybersecurity and Infrastructure Security Agency and other government agencies will continue to weigh in on vulnerability and patch management. Be prepared to respond.