GRC – Governance, Risk, And Compliance
Governance, risk, and compliance (GRC) trends are always evolving. Follow Forrester’s latest research and insights on GRC trends.
Insights
Blog
Overregulation Forges A CISO Coalition With The G7 Letter
A coalition of over 40 chief information security officers (CISOs) from leading companies, including Salesforce, Microsoft, AWS, Mastercard, and Siemens, sent a letter to the G7 and OECD, urging them to take action on aligning international cybersecurity regulations. This move signals a strategic shift: CISOs are no longer only responsible for internal controls but are […]
Blog
Government Leaders: Prioritize Cyber Efficiency Amid Federal Volatility
Government agencies at the federal, state, and local levels must prepare for a future where they experience uncertainty, headcount reductions, contract cancellations, and budget cuts. This is gut-wrenchingly difficult to process, yet remaining leaders must figure out how to move forward to serve the mission. For public sector cybersecurity leaders, this is even more paramount. […]
Blog
Forrester’s Top Threats For 2025
2025 started with a bang! Technology and geopolitics are changing so fast that many can’t keep track of the latest trends, with an announcement of new, benchmark-shattering genAI-related tech seemingly every week.
Blog
The Tech Exec’s Guide To Decoding Cybersecurity Vendor Performance
Forrester analyzed the earnings calls of the 10 largest cybersecurity vendors by market cap and identified key trends for technology executives.
Blog
Banks Need Modern Identity Verification Solutions To Stay Competitive And Resilient In The AI Era
There is a growing need for more secure identity verification in the financial services industry due to the rise of sophisticated fraud tactics and increasingly complex regulatory requirements. Learn the four key challenges that financial services firms face in this preview of a new report.
Blog
RSAC 2025 Early Stage Expo Preview: AppSec, IAM, GenAI, SecOps, And More
As we put together our game plan for what to see at RSA Conference 2025, we wanted to scope out innovation, identify which vendor booths will be a must-see, and (at least for one of us) minimize the number of steps to take around the Moscone Center.
Blog
New Year, New Us: Introducing Forrester’s International Security & Risk Team Research
Dive into our backgrounds, existing research, and capabilities. As a team, we cover a multitude of security and risk priorities. We are also geographically distributed; no one else is as uniquely positioned to add this level of global perspective to our research and our clients.
Blog
VMware/Siemens: A Cautionary Tale About The Risks Of Software And Services Licensing
Litigation has become the default method for companies to resolve disagreements, force accountability, and establish recourse for everything from breach-related failures to contractual disagreements. A recent lawsuit filed by VMware (now owned by Broadcom) against its customer, Siemens’ US operations, for alleged use of unlicensed software is not unique and should serve as a stark […]
Blog
Breaches And Lawsuits And Fines, Oh My! What We Learned, The Hard Way, From 2024
With the average cost of a data breach at $2.7 million and 33% of enterprises reporting being breached three or more times over the past 12 months, understanding and learning from past incidents is not just beneficial — it’s essential.
Podcast
Finally, An Alternative To 3LOD: Meet Continuous Risk Management
For more than a decade, risk managers have been trying to use the three lines of defense (3LOD) framework for enterprise risk management. But it was never meant for that. In this episode, Senior Analysts Alla Valente and Cody Scott walk through the new Forrester Continuous Risk Management Model, a more holistic and business-centric risk management approach.
Blog
Top Recommendations For CISOs In 2025: Deal With Uncertainty … Again
The security landscape continues to evolve, as does global uncertainty, leaving CISOs preparing for turbulence ahead.
Blog
Contract Lifecycle Management Is The Bridge Between Strategy And Reality — Choose Wisely To Thrive In Uncertainty
In under two months of 2025, organizations face a battery of changing regulations, new tariffs, and economic uncertainty … all while trying to stay competitive, remain resilient, and execute on their AI strategy. Here’s the good news: How well your organization deals with risk, crisis, and operations opportunity will largely depend on … you guessed […]
Blog
Data Privacy Day: Lessons From Texas
B2C marketers are monitoring a series of state privacy laws going into effect this year, including the recently enacted Texas Data Privacy and Security Act. Get three key next steps in this post.
Blog
Technological And Environmental Risks Take The Top Two Spots In 2025 WEF Risk Report
Get the highlights from the World Economic Forum’s 2025 Global Risks Report and find out what it means for global risk leaders.
Blog
Back In The Analyst Chair: What I’ll Be Focusing On In 2024–2025
Many of you will have noticed that I have moved back into an analyst role over the last few weeks. I had an immensely rewarding time working in the European research management team with a talented group of analysts on our European tech research coverage, whom I’m incredibly thankful to for their hard work and […]
Blog
Stop Defending The Three Lines Of Defense
Learn how the Forrester Continuous Risk Management Model can replace outdated risk management methods in this preview of a session at the upcoming Security & Risk Summit.
Blog
A 2025 Global Privacy Prospectus
The seasons are changing, Christmas catalogs are arriving, the clocks have shifted back an hour (in some countries) … yes, the new year is coming. While we don’t advocate for closing the books on 2024 yet (it’s only November, after all!), now is a great opportunity to consider what’s in store for next year. On […]
Conquer Your GenAI Security, Risk & Privacy Fears
Learn how to identify and manage enterprise genAI risk across models, APIs, and applications — and follow paths to secure, trusted adoption.
Blog
AI Governance Software Spend Will See 30% CAGR From 2024 To 2030
The global commercial AI software governance market is poised for exceptional growth. Forrester forecasts that by 2030, spending on off-the-shelf AI governance software will more than quadruple, reaching $15.8 billion and capturing 7% of overall AI software spending.
Blog
Open Source Doesn’t Mean A Trademark Free-For-All
Open-source licenses give you rights to copy, and in some cases, they define patent rights and responsibilities, but when they mention trademarks at all, most of them exclude rights rather than include them.
Blog
What You Should Look For From ESG Data And Analytics Providers
The Forrester Wave™: ESG Data And Analytics Providers, Q3 2024, reveals the 12 providers that matter most and how they stack up.
More posts