Sandy Carielli

Principal Analyst

Forrester Bio

Author Insights

Blog

The Secure Everywhere Movement Is Here: Are You On Board?

Janet Worthington May 9, 2022
Attackers have stepped up their application game in the past year. Sixty-two percent of organizations surveyed by software supply chain security vendor Anchore have been impacted by a software supply chain attack in the past year. The Solarwinds, Kaseya, and Codecov supply chain attacks are reminders of how these attacks affect critical infrastructure and organizations […]
Blog

In A Multicloud World, Web Application Firewalls Still Matter

Sandy Carielli May 2, 2022
The web application firewall market has evolved. Read this quick overview of the landscape.
Blog

Bot Management Vendors Show Progress On Diversity, Equity, And Inclusion

Sandy Carielli April 25, 2022
As previous Forrester research has shown, gender bias remains an urgent concern in cybersecurity, and issues around diversity, equity, and inclusion go far beyond gender. In the bot management world, where end users historically struggled with CAPTCHAs and other challenges that didn’t always support visual and physical impairments, having diverse voices in the room can […]
Blog

Application Sustainability Is More Than A Programming Language Choice

Sandy Carielli April 21, 2022
(Part 2 of a two-part series) Still Calling On Developers To Save The Earth! Two days ago, we introduced the concept of application sustainability and noted that while less abstract languages may have lower energy costs, there are other considerations in sustainable development and deployment. Whether your team is starting up a sustainable development initiative […]
Blog

Calling On All Developers To Save The Earth

Sandy Carielli April 19, 2022
The emerging concept of application sustainability may help developers make more energy-efficient choices. Here, we look at what the concept entails.
Blog

Bot Management Solutions Grow Up

Sandy Carielli April 12, 2022
The bot management market has matured considerably over the past few years. Two years ago, many vendors spoke primarily to the security persona, only the top vendors offered machine learning and layered detections, and response options were more limited. With the release of The Forrester Wave™: Bot Management, Q2 2022, we see a market that […]
Blog

So aktualisieren Sie Ihr Risikomanagement angesichts des Krieges in der Ukraine

Alla Valente March 30, 2022
Führende Risikomanagementunternehmen in Europa und weltweit sind bereits vom Krieg in der Ukraine und den gegen russische und weißrussische Akteure verhängten Sanktionen betroffen. Forrester-Analysten geben in diesem Beitrag ihre Einschätzung.
Blog

Neem de volgende stappen om u goed voor te bereiden op het cyberveiligheidseffect van de oorlog in Oekraïne

Paul McKay March 29, 2022
Neem de volgende stappen om u goed voor te bereiden op het cyberveiligheidseffect van de oorlog in Oekraïne
Blog

Mit diesen Schritten können Sie sich auf die Auswirkungen des Krieges in der Ukraine auf die Cybersicherheit vorbereiten und entsprechend handeln

Paul McKay March 29, 2022
11 Schritte, die Sie jetzt tun können, um Ihre Risiken und die Gefährdung durch Cyber-Bedrohungen im Zusammenhang mit dem Krieg zu verringern.
Blog

Comment Mettre À Jour Votre Stratégie De Gestion Des Risques Face À La Guerre En Ukraine

Alla Valente March 28, 2022
Les leaders de la gestion des risques en Europe et dans le monde sont déjà impactés par la guerre en Ukraine et les sanctions imposées aux acteurs russes et biélorusses. Les analystes de Forrester fournissent leurs conseils dans cet article.
Blog

Mesures Pour Vous Préparer Et Gérer Les Effets Sur La Cybersécurité De La Guerre En Ukraine

Paul McKay March 28, 2022
Onze choses que vous pouvez faire maintenant pour réduire vos risques et votre exposition aux cybermenaces liées à la guerre.
Blog

Continuous Evolution: In Acquiring Linode, Akamai Looks To Transform Again

Janet Worthington March 16, 2022
Akamai’s announcement last month that it had acquired infrastructure-as-a-service (IaaS) provider Linode addresses a gap in Akamai’s offering and presents an opportunity to disrupt traditional cloud service providers. Akamai’s edge function-as-a-service (FaaS) technology gives companies the ability to manipulate content close to the user with very low latency, but organizations still need to go back […]
Blog

Fix The Vulnerability Within: Break Gender Bias In Cybersecurity

Jinan Budge March 7, 2022
Forrester predicts that in 2022, one in 10 experienced security pros will exit the industry. This brain drain is the result of a few dynamics colliding: poor financial and advancement incentives; general stress and burnout impacting security teams; and cybersecurity’s dirty little secret, workplace toxicity! And cybersecurity isn’t immune to the hidden epidemic impacting women’s ability […]
Blog

Here’s How To Update Your Risk Management Posture Given The War In Ukraine

Alla Valente February 28, 2022
Risk management leaders in Europe and worldwide are already being impacted by the war in Ukraine and the sanctions imposed on Russian and Belarusian actors. Forrester analysts provide their guidance in this post.
Blog

Take These Steps To Prepare For And Handle The Cybersecurity Effects Of The War In Ukraine

Paul McKay February 28, 2022
Eleven things you can do now to reduce your risks and exposure to the cyber threats related to the war.
Blog

The Top Seven Most Misused Terms In Cybersecurity

Allie Mellen February 23, 2022
When vendors or practitioners use different words to communicate the same thing, confusion ensues. Let's take steps toward settling on a common vocabulary.
Blog

To Earn Customer Trust, Sell Secure Products

Sandy Carielli February 11, 2022
Get tips on how improving application security can help you secure your products and retain the trust of your customers.
Blog

Better Together: A Security And Marketing Team-Up Can Fight Fraudsters Across Multiple Threat Vectors

Sandy Carielli February 10, 2022
Marketers lose billions of dollars to fraud every year, and advertising fraud is often viewed as a cost of doing business. But it shouldn’t be! Today, organizations face a diversifying fraud landscape including attacks in the white space between marketing and security. If they don’t collaborate against these types of attacks, fraudsters can easily slip […]
Blog

Avoid An Open Source Security Nightmare

Andrew Cornwall January 20, 2022
We’ve had a few high-profile security problems with open source software. A disgruntled developer recently delivered intentionally modified releases of his faker.js and colors.js packages, which broke “thousands of projects” that relied on them. Some are wondering if it’s safe to use open source software at all. The White House certainly is — they’ve asked […]
Blog

Log4j, Open Source Maintenance, And Why SBOMs Are Critical Now

Sandy Carielli December 15, 2021
Beyond the immediate response issues, the Log4j vulnerability poses longer-term risk management and community considerations.
More posts