Jeff Pollard

MCP Doesn’t Stand For Many Critical Problems…But Maybe It Should For CISOs MCP and A2A protocols power agentic AI but introduce major security risks. Learn what CISOs need to know to secure autonomous systems.

MCP Doesn’t Stand For Many Critical Problems…But Maybe It Should For CISOs www.forrester.com/blogs/mcp-do...

How To Choose A Security Platform Without Getting Burned Not all security platforms are created equal. Get five tips on how to separate real platforms from glorified product bundles.

My coauthor @jessburn.bsky.social and I just released our work on security platforms. We don't attempt to articulate all the various products that comprise a platform. Instead, we focus on the components, outcomes, and benefits platforms bring. Give the blog a read: www.forrester.com/blogs/how-to...

Zscaler Snatches Up Red Canary: The Good, The Bad, And The Concerning Zscaler acquires Red Canary, bringing MDR and Zero Trust together. Check out Forrester's analysis of the good, the bad, and the concerning.

Zscaler announces its intent to acquire Red Canary. SSE meets MDR in a platform play.

The Good: Visibility boost
The bad: Integration unknowns
The concerning: Culture clash?
Check out the full blog from us here: bit.ly/44Z9vYC

Then, on Thursday April 24th at 2:20 PM Eastern I'll be leading a session at the SANS Cybersecurity Leadership Summit 2025 to help CISOs think about their security program as a profit center, not a cost center. This is a free event that you can register for here: www.sans.org/cyber-securi...

Action packed week in webinars! In just a few minutes Merritt Maxim, Alla Valente, and I will be delivering a webinar on "Leading Through Volatility" for security leaders. Forrester clients can register here: www.forrester.com/webinar/Lead...

RSAC 2025 Early-Stage Expo Preview: AppSec, IAM, GenAI, SecOps, And More As we put together our game plan for what to see at RSA Conference 2025, we want to scope out innovation. Here's trends to know going in.

RSAC Launch Pad and Innovation Sandbox represent two major chances for new vendors to show where our industry is headed. Heidi Shey and I give you a glimpse here: RSAC 2025 Early-Stage Expo Preview: AppSec, IAM, GenAI, SecOps, And More www.forrester.com/blogs/rsac-2...

Announcing The Forrester Wave™: Managed Detection And Response Services, Q1 2025! The third installment of the Forrester Managed Detection and Response (MDR) Services Wave™ is now live. There’s so much to love about the MDR market: fantastic providers, engaged clients, and meaningf...

Finally there's a threepeat worth talking about in 2025...in this case it's me finishing and releasing the third and newest edition of the MDR Wave! Give the blog a read! Announcing The Forrester Wave™: Managed Detection And Response Services, Q1 2025! forrester.com/blogs/announ...

Choose Your Own MDR Adventure: Avoid The Free-For-All Of “New” MDR Services Managed detection and response (MDR) has successfully claimed the crown of all managed security services for making and keeping clients happy.

In pursuit of sustaining their success, MDR providers now offer a wild mix of services that sometimes make MDR better and other times just satisfy investors chasing growth. For more read what @jessburn.bsky.social and I just released: www.forrester.com/blogs/choose...