Erik Nost

6 days ago | forrester.com | Erik Nost

This week, we saw the CVE process, as we know it, come hours from the brink of collapse when a memo started circulating on LinkedIn that DHS would cut funding to MITRE’s CVE cataloging on April 16. MITRE’s role in the CVE process is the crucial first step in assigning IDs to vulnerabilities so practitioners, vendors, researchers and governments across the globe can consistently reference the same vulnerability.

2 months ago | forrester.com | Alla Valente |Erik Nost |Jeff Pollard

In under two months of 2025, organizations face a battery of changing regulations, new tariffs, and economic uncertainty … all while trying to stay competitive, remain resilient, and execute on their AI strategy. Here’s the good news: how well your organization deals with risk, responds to crisis, and operations opportunity will largely depend on … you guessed it… contracts!The reason is simple, and also complex.

2 months ago | forrester.com | Andre Kindness |Erik Nost

As SD-WAN hit the peak of excitement, Forrester analysts noticed that the hype wasn’t turning into deployments. Many of the SD-WAN investigations were being held up by security teams that put a pause on the projects as the teams tried to wrap their heads around the shift in security architecture and controls from data center to cloud. At the time, networking and security were becoming inter-dependent; yet organizations and solutions were not quite there.

2 months ago | forrester.com | Allie Mellen |Merritt Maxim |Erik Nost

MITRE released its latest Enterprise MITRE ATT&CK Evaluations in December of 2024. At that time, we published a blog with a quick overview of the results. Today, we’re excited to announce that we have released three new pieces of research about this round of evaluations:Analysis Of The 2024 MITRE Engenuity ATT&CK Evaluation — an overview of this round’s evaluations with an explanation of the changes in methodology and an interpretation of the results.

2 months ago | forrester.com | Merritt Maxim |Erik Nost |Andre Kindness

In the last two years, growing concerns around the proliferation of and advances in deepfakes has raised concerns around potential of deepfakes to impede adoption of facial and voice biometrics. Deepfakes are increasing because many organizations are migrating identity verification, authentication, and high-value, high-risk transactions (e.g., payments, taking out an insurance policy) to remote digital interactions, rendering traditional in-person vetting procedures obsolete.