And the results are in... The Forrester Enterprise GRC Platform Wave 2009

Chris McClean

Chris McClean

The launch of any new research report is exciting, but I’m especially happy to see the publication of the The Forrester Wave™: Enterprise Governance, Risk, And Compliance Platforms, Q3 2009.

The evaluation speaks for itself. Forrester goes through great pains to assure a fair, detailed process that looks into the strengths and weaknesses customers care about most — and this Wave is no exception. But considering the amount of time and effort we spent putting this report together, I wanted to provide some additional thoughts on what I learned during the process:

Read more

Categories:

How Do We Measure High Availability?

Stephanie Balaouras

Stephanie Balaouras

Over the past 2 months, I've seen an increase in the number of end user inquiries regarding high availability and almost more importantly, how to measure high availability (HA). HA means something different depending on whom you're talking with so it's worth a quick definition. I define HA as:

Focused on the technology and processes to prevent application/service outages at the primary site or in a specific IT system domain.

 

This is in contrast to disaster recovery or IT service continuity (ITSC) which is about preventing or responding to outages of the entire site.

Why so many inquiries about HA recently? I believe that due to our increasing reliance on IT as well as the 24X7 operating environment that companies of all sizes and industries are becoming more and more sensitive to application and system downtime. The interest in measurement is driven by the need to continuously improve upon IT services and justify IT investments to senior management, especially now.

Read more

Categories:

Granted, the regulatory environment is changing. How will this affect us?

Chris McClean

Chris McClean


We are now approaching the half-way point of 2009, and most of us are still trying to figure out the nature and scope of regulations that will descend in reaction to the massive corporate failures of the last 9 months. Considering the hefty burden brought by Sarbanes-Oxley in reaction to — by comparison — less egregious issues, it’s no wonder risk and compliance professionals are waiting with nervous anticipation.

Read more

Categories:

No Honor Among Thieves

John Kindervag

John Kindervag

In the old days criminals like Robin Hood and Don Corleone had scruples. Remember when Don Vito stood up to Virgil "The Turk" Sollozzo and refused to become involved in the heroin trade? The Don stood for honor at the cost of a couple of bullets.

Don+Corleone

Read more

NetApp Shakes Up The Backup Marker With The Acquisition Of Deduplication Pioneer Data Domain

Stephanie Balaouras

Stephanie Despite the availability of multiple backup appliances supporting deduplication, Data Domain has continued to win customers at a steady pace. As of March 2009, the company had more than 2,900 customers and recruited hundreds of value added resellers. Its proven deduplication technology, integrated replication, and aggressive campaign to eliminate tape garnered it a tremendous amount of mind share and put it on most customers’ short lists. So it comes as no surprise that they were acquired by a major storage vendor.

That it was acquired by NetApp does come as a bit of surprise. NetApp does have its own successful VTL that supports deduplication. But then again, NetApp didn’t introduced deduplication in its VTL until the Fall of 2008 (the last of the major storage vendors to do so) and it typically sells its VTL into its own customer base. With Data Domain, NetApp now owns one of the toughest competitors in the backup appliance market and it gives the company a system that it (and the hundreds of NetApp channel partners around the globe) can sell into non-NetApp environments.

Read more

Categories:

Swine Flu? What It Means For IT Professionals

Stephanie Balaouras

Stephanie The US Center for Disease Control (CDC) has confirmed 64 cases of swine flu in the United States and as other countries including Canada (6), New Zealand (3), the United Kingdom (2), Israel (2), Spain (2), and now Germany have confirmed cases, the World Health Organization has raised the worldwide pandemic threat level to Phase 4. This means health officials have confirmed that the disease can spread person-to-person and has the potential to cause "community-level" outbreaks. The CDC recommends avoiding travel to Mexico and if you get sick, to stay home from work. Large numbers of employees out sick will impact the business (revenue) and cost your company a lot of money in productivity loss (you still pay employees their salary when they're out).

Stopping the spread of the disease and treating those infected is obviously a health issue, but the swine flu outbreak does have implications for IT professionals in both the short term and the long term. First, if you haven't done so already, you need find a copy of the bird flu business continuity plan (BCP) that your company developed in 2006 and call a walk through exercise immediately. And if your responsibility is IT disaster recovery and not necessarily business continuity, don't wait around for someone else to dust of the plan and call the exercise - this is too important to wait. Call your CIO, CISO, COO, and CEO and tell them it needs to be done now. There's a good chance that the plan is out of date and that it hasn't been exercised in a long time.

Read more

Deduplication Will Exist Everywhere

Stephanie Balaouras

Stephaniebalaouras Most customers were just starting to get their arms around all the different deduplication approaches available in disk appliances and VTLs from vendors when backup software vendors and even non-storage related vendors began announcing deduplication capabilities.

We all know the appliance and VTL vendors offering dedupe, including COPAN Systems, Data Domain, EMC, Exagrid, FalconStor, HP, IBM (Diligent), NEC, NetApp, Quantum, Sepaton, Sun StorageTek, and others.

And there were existing backup software vendors, including EMC Avamar, Symantec NetBackup PureDisk, and many online backup software vendors, like Asigra. Now add CommVault Simpana 8.0 and IBM Tivoli Storage Manager (TSM) V6.

Read more

Categories:

The Top 5 Things We Think You’ll See At RSA

John Kindervag

John Kindervag

Trying to guess what will be HOT at RSA is always a fun game.  2009 promises to be different than most years as pure technology may not be the focus of this year’s show.  Attendance may be lighter and conspicuous consumption of new gadgets may no longer be in vogue.  We’ll know more come Tuesday, but in the meantime, here’s our guess as to what the big topics may be:

Read more

New Security and Risk Podcast - The GRC Technology Puzzle

Chris McClean

It’s bad enough when your boss puts you on the spot about a recent project you’ve finished...it’s even more interesting when that conversation is recorded for the general public.

Listen to Research Director Rob Whiteley interview me about one of my recent reports in our new podcast, The GRC Technology Puzzle: Getting All The Pieces To Fit.

For those of you interested in why analysts write the reports they do and how they might have done things differently, our podcasts provide a behind-the-scenes look at what customer conversations, market trends, and other issues motivate our research.

This report specifically tackles the increasingly complicated GRC technology landscape, a market segment that includes literally hundreds of vendors vying for their share of corporate budgets. The highlight is a graphic that illustrates the different categories of technology available on the market and the distinct role they play in a broad GRC program.

Categories:

What would you do if you knew your network only had a week to live?

John Kindervag

Crank-defib 
 

Read more

Categories: