Jinan Budge
VP, Principal Analyst

Author Insights
Blog
Break The Cycle Of Security And Technology Intergenerational Trauma
Learn what's creating the silos between technology and security teams and how to avoid or remove them.
Blog
Security Team Culture Matters
Our research in 2020 dissected the causes of toxicity in cybersecurity and outlined that, in a practical sense, a toxic culture in cybersecurity looks like a team rife with infighting, unhappiness, and aggression between team members. Not only will this cultivate an unpleasant environment, but it also has the potential to ruin your security team’s […]
Blog
Win The Hearts And Minds Of Security-Fatigued Stakeholders
Get practical tips for building a stronger security culture by influencing three key stakeholder groups.
Blog
Zero Trust Finally Moves From Concept To Reality For Asia Pacific Firms
Forrester started covering Zero Trust (ZT) adoption in APAC in early 2020, when Zero Trust was largely touted as a buzzword in our region. At the time, this inaugural APAC-specific ZT research showed that, while ZT was already mainstream in the US and Europe, it was slowly but surely gaining adoption in APAC. Fast-forward two […]
Blog
We Need To Talk More About Burnout In Cybersecurity
Forrester predicted that in 2023, a Global 500 firm will be exposed for burning out its cybersecurity employees. In 2022, we saw at a very practical level in Australia that weaknesses in our cyberdefenses can impact society at mass levels. Impacts of breaches at Optus, Medibank, EnergyAustralia, and MyDeal include fines, exposure of millions of […]
Blog
My 2022 Airing Of Grievances And Feats Of Strength
In the spirit of Festivus, I’m airing my grievances and demonstrating my feats of strength. I don’t know about you, but I didn’t enter 2022 with a full tank. I started the year by joining the hordes of people revenge-travelling/shopping/connecting/renovating (I know!). It’s no wonder I feel utterly exhausted. It’s also no wonder that I […]
Blog
Has Zero Trust Killed Defense in Depth? Or “DiD” It Refine It?
Zero Trust (ZT) continues to make waves (no pun intended), with US federal agencies now publishing guidance, such as the OMB’s M-22-09 or the DoD’s ZT strategy, for effective implementations, allowing for the government to be viewed as a source of trust in cybersecurity — although ZT is still mired in myths, and these can […]
Blog
Being Future-Ready: From Security Awareness And Training To Adaptive Human Protection
In September 2022, Forrester’s guide to global SA&T regulations and standards revealed an impetus for a better future, and I shared with you all a sneak peek into the future of security awareness and training (SA&T). And today, I am THRILLED to finally announce to you The Future Of Security Awareness And Training report (client […]
Blog
APAC Predictions 2023: Cybersecurity And Risk
In 2023, APAC firms that prioritize internal security and risk cultural practices to deal with external forces will fare the best. Learn more in our 2023 predictions for cybersecurity and risk in APAC.
Blog
Australians’ Laid-Back Reputation Hides The Truth About Our Ability To Trust
People are hardwired to trust other people and, by extension, the organizations they engage with. As an organization, your success or failure at earning and keeping trust ultimately determines not only the fate of your relationship with customers, employees, and partners but the future prospects of the organization itself. But few business, political, or technical […]
Blog
Apply Critical Thinking And Culture To Reduce Insider Risk
Learn how to reduce the three most common types of insider threats in this Security & Risk event preview.
Blog
A Sneak Peek Into The Future Of Security Awareness And Training
Forrester’s Guide To Global SA&T Regulations And Standards Reveals An Impetus For A Better Future Twenty-five percent of security decision-makers tell us that their security awareness and training (SA&T) programs are driven by compliance. A recent NIST study on “Measuring the Effectiveness of U.S. Government Security Awareness Programs” found that, among leadership, 56% of respondents […]
Blog
The Do’s And Don’ts Of Cybersecurity Interview Question Design
To hire successful candidates, you need to learn about more than just their tech skills. These tips can help you know what to look for — and what pitfalls to avoid.
Blog
So aktualisieren Sie Ihr Risikomanagement angesichts des Krieges in der Ukraine
Führende Risikomanagementunternehmen in Europa und weltweit sind bereits vom Krieg in der Ukraine und den gegen russische und weißrussische Akteure verhängten Sanktionen betroffen. Forrester-Analysten geben in diesem Beitrag ihre Einschätzung.
Blog
Neem de volgende stappen om u goed voor te bereiden op het cyberveiligheidseffect van de oorlog in Oekraïne
Neem de volgende stappen om u goed voor te bereiden op het cyberveiligheidseffect van de oorlog in Oekraïne
Blog
Mit diesen Schritten können Sie sich auf die Auswirkungen des Krieges in der Ukraine auf die Cybersicherheit vorbereiten und entsprechend handeln
11 Schritte, die Sie jetzt tun können, um Ihre Risiken und die Gefährdung durch Cyber-Bedrohungen im Zusammenhang mit dem Krieg zu verringern.
Blog
Comment Mettre À Jour Votre Stratégie De Gestion Des Risques Face À La Guerre En Ukraine
Les leaders de la gestion des risques en Europe et dans le monde sont déjà impactés par la guerre en Ukraine et les sanctions imposées aux acteurs russes et biélorusses. Les analystes de Forrester fournissent leurs conseils dans cet article.
Blog
Mesures Pour Vous Préparer Et Gérer Les Effets Sur La Cybersécurité De La Guerre En Ukraine
Onze choses que vous pouvez faire maintenant pour réduire vos risques et votre exposition aux cybermenaces liées à la guerre.
Blog
Open Data Exposes An Uncomfortable Truth: Matters Of Gender Diversity And Inclusivity Remain Performative
Three steps to increase the level of trust in your gender-related messaging.
Blog
You Say You Want A Revolution? Announcing Our Latest Security Awareness And Training Forrester Wave™
The security awareness and training (SA&T) market has been stagnant for so long, with the last major disruption as far as I can tell being the introduction of phishing simulations about a decade or so ago. Since then, the industry seems to have seen a slow and steady evolution from ticking boxes to meet a […]
More posts