Jess Burn
Principal Analyst
Speaking At
Author Insights
Blog
Deconstruct Human-Element Breaches To Protect Your Workforce
Risks posed by and to humans such as deepfakes, data exfiltration by insiders, and misuse of generative AI are expected to accelerate and become more complex. Learn how to discern and manage these human-element risks in this preview of an upcoming report.
Blog
CrowdStrike Holds Its Fal.Con Conference As It Tries To Move On From July 19
Here are the top things you need to know coming out of CrowdStrike's recently held Fal.Con user conference, just two months after its config update took down 8.5 million Windows endpoints.
Blog
Falcon Fallout: What’s Next For CrowdStrike, Competitors, And CISOs
The July 19 CrowdStrike Falcon outage created major trust issues for the company and the broader security market. What's next for CrowdStrike? Find out as we make several predictions on where the company will go next.
Blog
Don’t Wait For A Crisis To Act
CrowdStrike's recent global incident underscores businesses' need to have robust crisis communication plans in place before a crisis occurs.
Blog
CrowdStrike Global Outage: Critical Next Steps For Tech And Security Leaders
Technology leaders woke up this morning to find that a software update by cybersecurity vendor CrowdStrike had gone badly wrong. Get updates on the steps that your organization should take now and in the long term as a result of the CrowdStrike outage.
Blog
Never “Too Small For Cybercriminals”: One Town’s Cautionary Tale
In a world of Scattered Spiders and Midnight Blizzards and UNC2452s, why is Arlington’s BEC important? Because it’s happening all the time to towns, municipalities, regional health systems, and small businesses lacking the resources to prepare for such an event.
Blog
Announcing The Forrester Wave™: Cybersecurity Incident Response Services, Q2 2024
Choosing the right cybersecurity incident response services provider comes down to three things. Learn what they are and get a preview of our new Wave report in this blog.
Blog
What We Can Learn From 2023’s Most Notable Breaches
Cybersecurity breaches continued to rise in 2023. Learn the eight most common incident types and get four key takeaways from our new report.
Blog
The State Of Cybersecurity Innovation: RSA Conference 2024
RSAC gives security startups two structured opportunities to distinguish themselves, and Forrester always finds it revealing to see which startups make the cut.
Blog
Forrester’s RSAC 2024 Themes, Takeaways, And Observations
More than 41,000 attendees, 600 exhibitors, and 425 sessions. Get some of the key themes and takeaways from the Forrester security & risk analysts who attended RSA Conference (RSAC) 2024.
Blog
Get Ready For Takeoff: Microsoft Copilot For Security
Microsoft announced the launch date of Copilot for Security. Find out what this means for security professionals and how you can prepare.
Blog
You Got Your Carbon Black In My Symantec! No, You Got Your Symantec In My Carbon Black!
What is Broadcom planning to do with VMware’s Carbon Black unit? Find out in this blog covering the plan to integrate Carbon Black with Broadcom's existing product lineup.
Blog
2024 Security Recommendations: Tackle Change Head On
Changing tech, changing threats, and changing consequences. 2024 will be a busy year for security professionals. Get a preview of our top security recommendations for 2024 in this blog and then read our full report.
Blog
Prescription For Change: Cybersecurity Outage Highlights Critical Vulnerabilities In Healthcare
A recent cybersecurity incident at Change Healthcare cause the pharmacy claims processors to take its systems offline. Learn the implication of this event and five things firms can do to prepare.
Blog
Higher Ed Rethinks The Three R’s To Close The Cybersecurity Skills Gap
Thanks to the widely publicized cybersecurity talent shortage, degree requirements are fading from job postings – even for US Federal contractors – and being replaced by demonstrable skills challenges, making expensive four-year programs less appealing to high school grads and those in the workforce looking for a career change.
To keep up, colleges and universities are doing some rethinking of their own as many attempt to carve out a slice of the cybersecurity skills and training pie. In the process, these institutions are renaming the traditional “three Rs” of education.
Blog
Announcing The First-Ever Evaluative Research On Cybersecurity Skills And Training Platforms!
The emergence of CS&T platforms ushers in a new era of upskilling and training focused not on point-in-time test prep but on continual learning, where practitioners go up against the latest attacker techniques individually or as a team to test technical skills, refine documented processes, and improve communication. They’re also using these platforms to acquire emerging skills, like prompt engineering, which are offered by many of the platforms in this evaluation.
Blog
Forget Ghost Stories: CISOs Should Be Scared Of The SEC
The SEC plans to haunt CISOs with cybersecurity enforcement, but there might be a silver lining for CISOs in the SEC complaint.
Blog
Torch The Test: Closing The Cybersecurity Skills Gap Requires Continuous Learning
Learn how investing in cybersecurity skills and training (CS&T) platforms can help overcome the cybersecurity skills gap in this preview of the upcoming Forrester Security & Risk Forum.
Blog
The CISO And CIO Microsoft Security Dilemma: Fend Off Or Learn To Love?
Should CISOs fend off Microsoft to keep their preferred products or embrace consolidation? Find out in this blog.
Blog
2003 Called, And It Doesn’t Want Its Email Security Appliances Back
Email security appliances have come a long way in the past 20 years. Learn the benefits of cloud-delivered email security.
More posts