security risk management

With the proliferation of data and the ubiquity of connected devices, organizations can move with unmatched efficiency, but simultaneously incur increased risks. Read our insights on how security & risk professionals can succeed in this environment.

Discover how Forrester supports IT leaders.

Insights

Blog

Coinbase Flips The Coin On Would-Be Extortionists

Joseph Blankenship 4 days ago
In a recent example of why managing insider risk is critical, cryptocurrency exchange Coinbase announced that it was the target of an extortion scheme enabled by insiders. Learn more about the incident and how to protect against it in this blog.
Blog

The Cyber Risk Tides Are Turning: RSAC ‘25 And Beyond

Cody Scott 6 days ago
RSAC is the largest cybersecurity conference in the world. Leaders and practitioners across all sectors come together to tackle challenges, all under the maxim of “managing risk.” But what does “risk” actually mean at a security conference? Is it a mythical pursuit? Marketing buzzword? Or generic substitute for “the thing we need to detect/prevent/remediate”? RSAC […]

Is Your Security Ready For Today’s Volatility?

Economic turmoil, cyberattacks, and rising regulations demand strong security leadership. Watch our webinar for tips on reducing risk, cutting costs, and leading through change.

Blog

It’s Time To Start Planning Your Postquantum Migration

Sandy Carielli May 12, 2025
When will quantum computers will be able to break asymmetric cryptography and algorithms? And what steps should you take to prepare? Find out in this preview of a report on quantum security.
Blog

RSAC Conference 2025: Welcome To The Petting Zoo

Sandy Carielli May 6, 2025
From live goats and puppies to robot dogs and animal costumes, the RSAC Conference 2025 delivered some unexpected surprises. But it also delivered the usual insight into various trends in the security market today. Find out more in this RSAC review.
Blog

Overregulation Forges A CISO Coalition With The G7 Letter

Madelein van der Hout April 24, 2025
A coalition of over 40 chief information security officers (CISOs) from leading companies, including Salesforce, Microsoft, AWS, Mastercard, and Siemens, sent a letter to the G7 and OECD, urging them to take action on aligning international cybersecurity regulations.
Blog

Global Tariffs: Dynamic Risk Management Meets Its Moment

Paul McKay April 23, 2025
The recent introduction of US-imposed tariffs has shaken global trade. While economists and financial analysts debate whether this on-again/off-again trade war fits into their model for geopolitical, economic, or supply chain risks, the result is the same: uncertainty and chaos sure to shake up business strategy for the foreseeable future. This new era of volatility […]
Blog

Transforming Enterprise Business Apps With Powerful AI Ecosystems And Marketplaces

Linda Ivy-Rosser April 18, 2025
We can’t emphasize enough the importance of interconnected networks and ecosystems to the enterprise application software market. Industry cloud providers and hyperscalers possess several key advantages in nurturing and leading these innovation networks. So what does this acceleration of AI software and services on industry cloud and hyperscaler marketplaces mean? Well, it depends on the […]

Calm The Impact Of Volatility — And Thrive

Stay ahead of market volatility — be prepared, not reactive. Learn how to optimize costs, lead change, and mitigate risks with Forrester's report on navigating uncertainty and driving success in challenging times.

Blog

OpenAI Requires Identity Verification For Access To Its Latest Models

Andras Cser April 17, 2025
OpenAI announced that it will require organizations to complete an identity verification (IDV) process to verify their organization’s identity before being allowed to access the latest OpenAI models. Identity verification will likely require developers to digitally verify themselves using government-issued photo ID from permitted countries and prove their affiliation with their organization. Forrester expects that […]
Blog

Government Leaders: Prioritize Cyber Efficiency Amid Federal Volatility

Cody Scott April 17, 2025
Government agencies at the federal, state, and local levels must prepare for a future where they experience uncertainty, headcount reductions, contract cancellations, and budget cuts. This is gut-wrenchingly difficult to process, yet remaining leaders must figure out how to move forward to serve the mission. For public sector cybersecurity leaders, this is even more paramount. […]
Podcast

Oracle’s Data Breach Silence, Tariff Impacts, Homegrown Social Influencers

What It Means April 17, 2025
In this episode, we look at the ongoing fallout from two healthcare data breaches involving Oracle servers and what the on-again, off-again tariffs could mean for CIOs. Then we discuss the rising prominence of social media influencers in the B2B space — and why tapping your own employees could be a smart move.
Blog

Announcing Forrester’s Security & Risk Enterprise Leadership Award

Stephanie Balaouras April 16, 2025
Forrester is delighted to announce the opening call for our annual Security & Risk Enterprise Leadership Award. This award recognizes organizations that have transformed their security, privacy, and risk management functions into capabilities that fuel the organization’s reputation for trust and its long-term success.
Blog

The Tech Exec’s Guide To Decoding Cybersecurity Vendor Performance

Madelein van der Hout April 15, 2025
Forrester analyzed the earnings calls of the 10 largest cybersecurity vendors by market cap and identified key trends for technology executives.

Turn Uncertainty Into Opportunity

Market volatility isn’t a roadblock — it’s your launchpad. With Forrester’s expert resources, you can optimize costs, lead with confidence, and turn challenges into growth.

Blog

Banks Need Modern Identity Verification Solutions To Stay Competitive And Resilient In The AI Era

Meng Liu April 11, 2025
There is a growing need for more secure identity verification in the financial services industry due to the rise of sophisticated fraud tactics and increasingly complex regulatory requirements. Learn the four key challenges that financial services firms face in this preview of a new report.
Blog

New Year, New Us: Introducing Forrester’s International Security & Risk Team Research

Jinan Budge April 7, 2025
Dive into our backgrounds, existing research, and capabilities. As a team, we cover a multitude of security and risk priorities. We are also geographically distributed; no one else is as uniquely positioned to add this level of global perspective to our research and our clients.
Blog

Step Right Up: To Manage Volatility, You’re All Risk Leaders Now!

Alla Valente April 4, 2025
While business volatility tests resilience, it also creates opportunities. Learn three ways to make your risk management efforts more targeted and effective.
Blog

How CISOs Can Thrive Amid Economic Volatility

Jeff Pollard April 4, 2025
In today’s unpredictable economic climate, CISOs face familiar — but intensified — challenges. Get some actionable insights to help navigate through turbulent times in this preview of a new report.
Blog

So There Won’t Be A Wiz IPO — What Does That Mean For Cyber IPOs In 2025?

Merritt Maxim April 3, 2025
Last week’s mega deal of Google acquiring CNAPP provider Wiz for $32 billion has some lamenting the future of IPOs in the cybersecurity space.

Showcase Your Security & Risk Innovation With A Forrester Award

Get recognized for excellence in security, privacy, and risk innovation. Apply for a Forrester Security & Risk Enterprise Leadership Award to celebrate your success in creating resilient operations. Apply by July 23, 2025.

Blog

Generative AI Innovation In Security Tools Is Finally Getting Interesting

Allie Mellen April 2, 2025
The core themes of The-C2 conference in London were artificial intelligence, supply chain security, and cyber hygiene. Get a closer look at how these themes may impact security professionals in this recap.
Blog

Address The Whole Person To Impact Insider Risk

Joseph Blankenship April 1, 2025
One of the main themes from the recent Insider Summit was that insider risk is very much a human problem, not a technology problem. Find out more in this review of the event.
Blog

How To Boost Your Third-Party Risk Program With A Spring Cleaning

Alla Valente April 1, 2025
Prioritize Foundational Elements Over Decorative Accessories Our springtime urge to clean, redecorate, and renovate has a biological explanation. Turns out that spring’s increased hours of daylight lower our body’s production of melatonin (the hormone that makes you sleepy), which leads to regained energy and inspiration to clean our living environments. For security and risk pros, […]
More posts