the forrester new wave™: digital risk protection, q3...
Post on 30-Jul-2020
25 Views
Preview:
TRANSCRIPT
The Forrester New Wave™: Digital Risk Protection, Q3 2018The 14 Providers That Matter Most And How They Stack Up
by Nick HayesJuly 17, 2018
NOT LICENSED FOR DISTRIBUTION
FoRReSTeR.coM
Key TakeawaysLeaders: Digital Shadows, ZeroFoX, And Recorded FutureForrester’s research uncovered a market in which Digital Shadows, ZeroFOX, and Recorded Future lead the pack. RiskIQ, IntSights, CyberInt, Proofpoint, and LookingGlass Cyber Solutions offer competitive options. Blueliv, Sweepatic, Cyxtera, and Social SafeGuard offer strong options in specific areas, while CTM360 and Axur are relevant in niche, regional markets.
Risk Analytics And Automated Remediation Are The Biggest DRP DifferentiatorsSecurity and risk pros should weight these two DRP capabilities higher during their vendor evaluation process. They’re the cornerstone features for the two most important DRP objectives: detect and resolve.
Why Read This ReportIn Forrester’s evaluation of the emerging market for digital risk protection (DRP), we identified the 14 most significant providers in the category — Axur, Blueliv, CTM360, CyberInt, Cyxtera, Digital Shadows, IntSights, LookingGlass Cyber Solutions, Proofpoint, Recorded Future, RiskIQ, Social SafeGuard, Sweepatic, and ZeroFOX — and evaluated them. This report details our findings about how well each vendor scored against 10 criteria and where they stand in relation to each other. Security pros can use this review to select the right partner for their DRP needs.
7
3
2
22
© 2018 Forrester Research, Inc. Opinions reflect judgment at the time and are subject to change. Forrester®, Technographics®, Forrester Wave, TechRadar, and Total Economic Impact are trademarks of Forrester Research, Inc. All other trademarks are the property of their respective companies. Unauthorized copying or distributing is a violation of copyright law. Citations@forrester.com or +1 866-367-7378
Forrester Research, Inc., 60 Acorn Park Drive, Cambridge, MA 02140 USA+1 617-613-6000 | Fax: +1 617-613-5000 | forrester.com
Table Of Contents
DRP Improves Visibility And Remediation Of Risks Online
Digital Risk Protection Evaluation Overview
Vendor QuickCards
Supplemental Material
Related Research Documents
Assess Your Digital Risk Protection Maturity
The Forrester Wave™: Digital Risk Monitoring, Q3 2016
New Tech: Digital Risk Protection, Q2 2018
FOR SECURITY & RISK PROFESSIONALS
The Forrester New Wave™: Digital Risk Protection, Q3 2018The 14 Providers That Matter Most And How They Stack Up
by Nick Hayeswith Christopher McClean, Josh Zelonis, Trevor Lyness, and Peggy Dostie
July 17, 2018
Share reports with colleagues. Enhance your membership with Research Share.
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
2
The 14 Providers That Matter Most And How They Stack Up
DRP Improves Visibility And Remediation Of Risks Online
Security pros are turning to digital risk protection (DRP) solutions to deal with the heightened exposure their organizations’ digital infrastructure, assets, and accounts face online.1 DRP solutions offer rapid event detection and remediation capabilities so companies can fix issues before bad actors exploit them (e.g., sensitive data publicly exposed due to misconfigured Amazon S3 buckets, impersonated social media accounts, or phishing websites) and to limit the effects of successful attacks when they occur. Even in these early days, we see a thriving DRP market in which:
› DRP tools are a new kind of solution for a new set of challenges. Security leaders view and purchase DRP solutions as a new category of technology in their portfolio. More than three-quarters (77%) of the DRP customers we surveyed added DRP as a net-new solution (as opposed to a replacement for an existing tool). Moreover, most customers (85%) use DRP alongside at least one other solution (more than six for some) to provide new, meaningful insights in their existing digital risk intelligence arsenals.2
› Brand security, VIP protection, and digital footprint mapping are common use cases. DRP tools support a wide swath of security and risk use cases — from domain takedowns to physical situational awareness. The customers we surveyed most commonly turned to DRP solutions to improve how they monitor and mitigate brand risk (79%). Also high on this list were capabilities to facilitate takedowns and remediation (64%), protect executives and VIPs (39%), and map and secure their digital footprint and digital assets (36%).3
› Social media intelligence and dark web reconnaissance are in high demand. Leading DRP solutions collect and correlate data for a broad range of intelligence purposes. None are more frequently sought out right now than social media intelligence and cyber intelligence; DRP customers most frequently cited these two intelligence domains as “extremely important” factors in their DRP selection decisions (44% and 38%, respectively).4
› Security pros lead DRP efforts, but cross-functional teams are critical. The majority of DRP customers we surveyed held roles in information security (50%), threat intelligence (26%), or IT (15%). But they also cited the need for true cross-functional teams to effectively set digital risk strategy and carry out operational responsibilities.5 They listed many other noncybersecurity stakeholders, including members from legal (45%), enterprise risk management (32%), public relations and corporate communications (32%), marketing (26%), physical security (26%), and human resources (23%).6
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
3
The 14 Providers That Matter Most And How They Stack Up
Digital Risk Protection Evaluation Overview
The Forrester New Wave™ differs from our traditional Forrester Wave. In the New Wave evaluation, we evaluate only emerging technologies, and we base our analysis on a 10-criteria survey and a 2-hour briefing with each evaluated vendor. We group the 10 criteria into current offering and strategy (see Figure 1). We also evaluate market presence.
We included 14 vendors in this assessment: Axur, Blueliv, CTM360, CyberInt, Cyxtera, Digital Shadows, IntSights, LookingGlass Cyber Solutions, Proofpoint, Recorded Future, RiskIQ, Social SafeGuard, Sweepatic, and ZeroFOX (see Figure 2 and see Figure 3). Each of these vendors has:
› Functionality to collect and scan data from a broad set of digital channels. DRP solutions continually collect and analyze data from a wide range of deep and dark digital (i.e., social, mobile, and web) channels. Vendors may differentiate with unique data access or data-gathering techniques, such as proprietary analysis capabilities for open source intelligence (OSINT) or specialized technical intelligence (TECHINT) techniques.
› capabilities to map, monitor, and mitigate digital risk. As part of their core technical capabilities, DRP solutions apply automation and advanced data science and analytic techniques to improve action related to three main DRP activities: map, monitor, and mitigate digital risk.7 This includes capabilities to link business attributes with related digital assets, to detect, score, and prioritize digital risk events, and to coordinate risk remediation activities.
› A clear focus on security use cases and functions. All included DRP vendors demonstrate a strong understanding of and focus on helping information security and risk customers handle their unique challenges. This includes tailored marketing and messaging, abundant customer case studies, technical capabilities, and strategic partnerships.
› Demonstrated success and market relevance. All participating vendors have an active, growing enterprise customer base and routinely appear in competitive situations in the market and among Forrester clients. Vendors demonstrate a commitment to continued innovation and development, along with the financial resources necessary to support it.
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
4
The 14 Providers That Matter Most And How They Stack Up
FIGURe 1 Assessment Criteria
Criteria explanationCriteria
To what extent does the product collect, analyze, and protect data, accounts, and apps on social and mobile channels? Which data sources and collection techniques are differentiators? How ef�cient is it at executing takedowns in these domains?
To what extent does the product collect and analyze data from surface and deep web channels? Which data access and collection techniques are differentiators? How well does it execute web takedowns and other risk remediation action (e.g., via APIs and system integrations)?
To what extent does the product collect and analyze data to reveal criminal or otherwise malicious activity and attacks to improve cyber risk and situational context on hidden and dif�cult-to-access sites or groups? Which dark channels are accessed and maintained via technology and automation?
How does the product maintain an accurate pro�le of a customer organization and all relevant digital and physical assets as it appears online? How well does it discover, link, and organize new, external digital assets, apps, accounts, and metadata connected to the organization?
How well does the product measure, classify, and prioritize normalized data in terms of risk and business value, including �exible risk scales, weightings, severity levels, etc.? How well does it enable users to assign, review, and escalate identi�ed digital risk events?
To what extent does the product generate sophisticated and visually appealing graphical representations of system data and activity? To what extent is the overall UI experience intuitive, comprehensive, and easy-to-use for all active users?
Social and mobile risk protection
Web risk protection
Dark web recon
Business attribution and asset mapping
Digital risk analysis and review
Dashboard and UI
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
5
The 14 Providers That Matter Most And How They Stack Up
FIGURe 1 Assessment Criteria (Cont.)
Criteria explanationCriteria
To what extent does the product offer unique features and functionality to support �ve core DRP use cases?
• Brand protection.
• Location protection.
• VIP and executive protection.
• Third-party risk intelligence.
• PII discovery.
How well does the vendor articulate a clear vision of the future of the DRP market, and how well is it positioned to capitalize on its vision? What resources does the vendor have to support continued growth, and does it have a strong track record of success and innovation?
How well does the vendor support customers’ unique DRP needs in terms of native language technical and analyst support, as well as local in-region security and legal services? How well does the vendor support ad hoc requests for custom, in-depth investigations?
To what extent does the vendor differentiate through proprietary features and intellectual property? Does the vendor maintain strategic relationships with security technology partners and related services providers (e.g., legal services, law enforcement, and MSSPs)?
DRP breadth and depth
Vision and execution
Global reach and analyst support
Thought leadership and strategic partnerships
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
6
The 14 Providers That Matter Most And How They Stack Up
FIGURe 2 The Forrester New Wave™: Digital Risk Protection, Q3 2018
Challengers Contenders LeadersStrong
Performers
Strongercurrentoffering
Weakercurrentoffering
Weaker strategy Stronger strategy
Market presence
Axur
Blueliv
CTM360
CyberInt
Digital Shadows
Cyxtera
IntSights
LookingGlass Cyber Solutions
Proofpoint
Recorded Future
RiskIQ
Social SafeGuard
Sweepatic
ZeroFOX
Digital Risk ProtectionQ3 2018
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
7
The 14 Providers That Matter Most And How They Stack Up
FIGURe 3 Vendor QuickCard Overview
Company
Digital Shadows
ZeroFOX
Recorded Future
RiskIQ
IntSights
CyberInt
Proofpoint
LookingGlass Cyber Solutions
Blueliv
Social SafeGuard
Cyxtera
Sweepatic
CTM360
Axur
Vision a
nd exe
cutio
n
Thought lea
dersh
ip a
nd
stra
tegic
partn
ersh
ips
DRP bre
adth
and d
epth
Dashboar
d and U
I
Busines
s attr
ibutio
n and a
sset
map
ping
Digita
l risk
analy
sis a
nd revie
w
Dark
web re
con
Web
risk
pro
tect
ion
Social a
nd mobile
risk
pro
tect
ion
Global
reac
h and
analy
st su
pport
Differentiated On par Needs improvement
Vendor QuickCards
Forrester evaluated 14 vendors and ranked them against 10 criteria. Here’s our take on each.
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
8
The 14 Providers That Matter Most And How They Stack Up
Digital Shadows: Forrester’s Take
Our evaluation found that (see Figure 4):
› Digital Shadows leads with a differentiated dashboard and dark recon capabilities. The dashboard hub delivers quick value with an intuitive and interactive funnel graphic, displaying operational and digital risk metrics with client-tailored alerts. It produces granular insight into criminal and malicious cyberactivity via automated and analyst-curated dark web recon.
› Digital Shadows still needs to shore up its social media and executive protection. Its social media intelligence (SOCMINT) capabilities are limited for insight and remediation. This also restricts executive protection, as adversaries often use social media to target VIPs.8
› Digital Shadows is best for companies seeking DRP breadth and depth in one tool. Digital Shadows keeps getting closer to an all-in-one solution to monitor and mitigate external risk exposure online. Its rich partner ecosystem, including security technology vendors, regional legal services, and law enforcement, adds further value for all customers.
Digital Shadows customer Reference Summary
Customers extol Digital Shadows for its robust digital risk data and ability to deliver on an aggressive product road map, citing a new queryable deep and dark web search feature as evidence.
FIGURe 4 Digital Shadows QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“Digital Shadows found thousands of corporate-sensitive �les exposed online in just a few months.”
“As close to an all-in-one tool for deep and dark discovery.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedDigital Shadows SearchLight
Digital ShadowsWave position
LEADER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
9
The 14 Providers That Matter Most And How They Stack Up
ZeroFoX: Forrester’s Take
Our evaluation found that (see Figure 5):
› ZeroFoX leads the pack in social media protection and digital risk analytics. Its coverage of social channels and intelligence stands out because of its ability to protect individual social accounts and analyze unique behavioral risk indicators. FoxScript opens up its analytics engines to all customers that want to integrate their own data into the platform.
› ZeroFoX still needs to improve its deep web coverage. It ingests web data via APIs (e.g., Whois info, TLDs, dump-/bin- sites, etc.) but some web infrastructure and visibility gaps exist.
› ZeroFoX is best for those that want actionable intelligence and rapid remediation. Even for security pros not interested in social media protection, ZeroFOX is worth considering for its flexible analytics platform as well as the quick takedown and remediation it can facilitate via native integrations with its many security technology partners.
ZeroFoX customer Reference Summary
Customers praise ZeroFOX for its platform’s flexibility and ease of use, the ability to take immediate remediation action (e.g., take down sites or block IPs), and its brand risk analytics (e.g., image recognition and analysis). Customers want to see more social and nonsocial data in the tool.
FIGURe 5 ZeroFOX QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“ZeroFOX actually helps reduce my risk posture; it provides actionable intelligence that my team can use to take action very, very quickly.”
“Intuitive, easy-to-use GUI.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedZeroFOX Platform
ZeroFOXWave position
LEADER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
10
The 14 Providers That Matter Most And How They Stack Up
Recorded Future: Forrester’s Take
Our evaluation found that (see Figure 6):
› Recorded Future leads the pack with a feature-rich platform. The tool is highly configurable, enabling users to easily tailor their alerts, classifiers, risk severity scores, and tolerance levels. Sophisticated data science techniques (e.g., data clustering and pattern matching), coupled with well-designed visualizations, accelerate user analysis and detection.
› Recorded Future still needs to work on business attribution and brand protection. Recorded Future needs analytics that incorporate business assets and brand characteristics to generate insight on par with its threat analysis and attribution capabilities.
› Recorded Future is best for companies arming their own security analysts. It’s a top option for experienced security analysts who spend the majority of their time understanding their threat environment for security strategy and operational purposes.
Recorded Future customer Reference Summary
Customers rave about Recorded Future for its breadth of OSINT coverage, modern data visualizations, and the quality of its vulnerability ranking and classification models. They find it difficult to understand how to use all of its features and overly complicated search capabilities.
FIGURe 6 Recorded Future QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“Recorded Future’s data visualizations let us move quickly through huge amounts of information.”
“Their internal analysts are top-notch.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedThreat Intelligence Machine
Recorded FutureWave position
LEADER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
11
The 14 Providers That Matter Most And How They Stack Up
RiskIQ: Forrester’s Take
Our evaluation found that (see Figure 7):
› RiskIQ leads the pack in digital asset discovery and footprint mapping. Its sensor network and virtual web crawlers (which mimic real user attributes and activity) scan and inventory the surface and deep web, including historical versions of digital sites and assets. It generates unique visibility into obscure parts of the internet, detects suspicious and malicious activity, and provides its own takedown service and other remediation capabilities.
› RiskIQ should keep improving its risk analytics and dark web coverage. Risk scoring is getting better but still needs further refinement to help users better sort through the abundance of data and to prioritize severe digital risks more efficiently.
› RiskIQ is best for those who want panoramic web visibility and takedown support. Security pros can use RiskIQ to assess their attack surface, track digital assets for unsanctioned modifications and access, and perform quick takedowns of illegitimate sites.
RiskIQ customer Reference Summary
Customers appreciate RiskIQ’s ability to quickly scale as threats evolve, the quality of its takedown service, and its rogue mobile app detection. They cite language support as an area for improvement.
FIGURe 7 RiskIQ QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“RiskIQ solves a lot of problems for us; it’s a key tool in our web protection portfolio.”
“Keeps track of our digital footprint, which is increasingly external.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedDigital Threat Management
RiskIQWave position
STRONG PERFORMER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
12
The 14 Providers That Matter Most And How They Stack Up
IntSights: Forrester’s Take
Our evaluation found that (see Figure 8):
› IntSights leads with robust security integrations. These integrations improve clients’ ability to actively monitor for and remediate digital risk. For example, IntSights can integrate with Active Directory to continually search for recently leaked account credentials. Applying machine learning and automation techniques, it generates critical digital risk insight by harvesting data from web sources as well as hundreds of criminal forums and marketplaces.
› IntSights needs to refine its dashboard and UI for larger, complex customers. It’s grown quickly in its first three years of existence. The platform must scale with this growth to address the complex needs of large customers (e.g., role provisioning and administration).
› IntSights is best for those seeking automated deep and dark web protection. Security pros who want a technology-led DRP solution (as opposed to analyst-led) with superior dark web reconnaissance and minimal staff involvement should add IntSights to their shortlists.
IntSights customer Reference Summary
Customers praise IntSights for its numerous security tool integrations, ease of remediation and takedowns, and analyst support. They noted report customization as an area to improve.
FIGURe 8 IntSights QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“IntSights’ hooks and personas into dark web forums in multiple languages sets them apart.”
“The breadth of API integrations with my internal security systems sold me.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedEnterprise Threat Intelligence & Mitigation Platform
IntSightsWave position
STRONG PERFORMER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
13
The 14 Providers That Matter Most And How They Stack Up
cyberInt: Forrester’s Take
Our evaluation found that (see Figure 9):
› cyberInt offers solid DRP capabilities across its service lines. CyberInt offers DRP as an analyst-driven managed service, with interactive and visually-creative dashboards. It offers effective deep and dark web visibility, including its own “leaked credentials” database for quick matching and validation. Headquartered in Israel, it has a strong international presence including Europe and Asia Pacific and operations centers globally.
› cyberInt needs to find ways to stand out. As DRP competition builds, it could get lost in the noise without demonstrated leadership in at least a few technical or service capabilities.
› cyberInt is best for those seeking DRP as a managed service with regional support. Security leaders that don’t want to commit their own staff to handling DRP efforts, and those that need support in specific international regions, will find a good fit with CyberInt.
cyberInt customer Reference Summary
Customers chose CyberInt because of the completeness of its offering and its regional coverage. They tout the immediacy of its risk detection, data, and alerts. However, they want takedown speed, reporting, and analytics options to improve.
FIGURe 9 CyberInt QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“CyberInt analysts are great; they handle the noise and false positives, alerting us to only real, critical issues.”
“Immediacy of risk alerts.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedDiggy, Branda
CyberIntWave position
STRONG PERFORMER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
14
The 14 Providers That Matter Most And How They Stack Up
Proofpoint: Forrester’s Take
Our evaluation found that (see Figure 10):
› Proofpoint differentiates with strong social protection and coordinated email security. Proofpoint leads its DRP message with its ability to secure and moderate social media account activity. The company’s mobile, social, and domain discovery tools actively and effectively scan these channels for brand abuse, impersonations, phishing sites, and more. Its email security gateway adds further digital risk insight, updating blocklists automatically.
› Proofpoint needs to sharpen its product strategy to remain a DRP frontrunner. It has worthy but disjointed DRP products and a dashboard and UI ready for a makeover. Future plans should remedy some of this, but its road map leaves more questions than answers.
› Proofpoint is best for those seeking DRP and email security. Its “people-centric security” vision should resonate with all security leaders. When coupled with its email security gateway, you get a feature-rich DRP tool with granular data and rapid attack prevention.
Proofpoint customer Reference Summary
Customers tout Proofpoint’s DRP solution for its integration with other Proofpoint products, its overall ease of use, and efficient takedown support. They cited its poor UI as the top improvement priority.
FIGURe 10 Proofpoint QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“Proofpoint’s Patrol product monitors our social media and online presence; quickly reports or removes any issues.”
“Support is �rst-rate; you know they speak your language.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedDomain Discover, Social Discover, Social Patrol
ProofpointWave position
STRONG PERFORMER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
15
The 14 Providers That Matter Most And How They Stack Up
LookingGlass cyber Solutions: Forrester’s Take
Our evaluation found that (see Figure 11):
› LookingGlass offers skilled analysts, strong support, and global reach. It delivers top-tier DRP services, employing skilled analysts with decades of experience, many of whom joined as part of the Cyveillance acquisition in 2015. The company offers a dashboard for analysis and reporting but still sends most intelligence directly to customers’ email inboxes.
› LookingGlass needs technology partnerships and integrations. It offers a proprietary security appliance that can update clients’ firewalls based on new risk data. But that doesn’t make up for a lack of partners to help improve analytics, event coordination, or remediation.
› LookingGlass is best for companies that value external expertise above all else. Security pros seeking an established provider with trusted personnel and support should seriously consider LookingGlass. Its recent Goldman Sachs’ SIEM purchase should also boost its dashboard features for clients in the near future.
LookingGlass customer Reference Summary
Longstanding customers praise LookingGlass for its skilled analysts, geographical reach, and data collection and risk analysis. Better trending and forecasting are high on customers’ wish lists.
FIGURe 11 LookingGlass Cyber Solutions QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“LookingGlass’ executive protection assessment and monitoring service are critical for us.”
“Unrivaled experience in the marketplace.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedThreat Intel-as-a-Service Solution, ScoutPrime
LookingGlass Cyber Solutions
Wave position
CONTENDER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
16
The 14 Providers That Matter Most And How They Stack Up
Blueliv: Forrester’s Take
Our evaluation found that (see Figure 12):
› Blueliv shows off an impressive dashboard and UI. Security and risk teams can collaborate efficiently using its DRP dashboard, which contains helpful in-line highlighting for event review, flexible tagging, and screenshots displayed natively in event records. It licenses to MSSPs and sells direct to enterprises that have internal teams of analysts.
› Blueliv needs better takedown support as well as social data analysis and protection. To help customers take action, Blueliv needs to improve its takedown services and offer better insight for social channels, marketplaces, and eCommerce sites.
› Blueliv is best for those wanting a DRP partner in europe with strong dark web recon. Headquartered in Barcelona, Blueliv maintains a strong presence in Europe and support for customers globally. A clear strength is in its dark web recon with proprietary crawlers into darknets, criminal forums, and IRCs, as well as its deep file inspection capabilities.
Blueliv customer Reference Summary
Customers value Blueliv for its flexible UI as well as its quality of data and risk analysis for deep and dark web channels. They wish system configuration wasn’t as burdensome as it is now.
FIGURe 12 Blueliv QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“Blueliv generates high-quality data alongside experienced, in-region analysts.”
“Excellent external view of our company’s risk exposure.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedThreat Compass
BluelivWave position
CONTENDER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
17
The 14 Providers That Matter Most And How They Stack Up
Social SafeGuard: Forrester’s Take
Our evaluation found that (see Figure 13):
› Social SafeGuard offers superior social media risk protection. It’s in the process of a major product pivot, from social compliance enforcement to full-fledged DRP with social account protection as its backbone. Today, it competes — and often wins — against DRP vendors in its social media security sweet spot. It claims better protection against attackers because it can restrict users’ ability to deauthorize third-party apps on Facebook accounts.9
› Social SafeGuard needs to work on web and dark web collection and analytics. It offers some web and dark web insight, but its data coverage and own collection techniques are limited. As data breadth improves, its risk analytics must also keep pace.
› Social SafeGuard is a great option to secure social assets and protect the brand. Security leaders who want competitive DRP capabilities with top-notch social media protection will find an enticing solution in Social SafeGuard.
Social SafeGuard customer Reference Summary
Customers value Social SafeGuard’s social risk data and analysis, using it to identify malicious threats targeting and/or impersonating high-profile stakeholders on social networks.
FIGURe 13 Social SafeGuard QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“Social SafeGuard understands the evolution of the threat environment on social media.”
“Secures our social assets and accounts.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedSocial SafeGuard
Social SafeGuardWave position
CONTENDER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
18
The 14 Providers That Matter Most And How They Stack Up
cyxtera: Forrester’s Take
Our evaluation found that (see Figure 14):
› cyxtera offers a DRP tool with integrated DMARc and a promising road map. Cyxtera, a newly formed organization resulting from a merger of four security vendors, leverages its Easy Solutions fraud and email security capabilities as the foundation for its DRP solution.10 Its current capabilities are raw, but with planned product developments and integration with the Brainspace analytics platform for risk analysis and visualization, its future looks bright.
› cyxtera must work on its digital risk analysis and review functionality. It must execute on its product road map, especially its risk analytics and UI, to compete in the DRP market.
› cyxtera is best for FIs and SMBs that want DRP and email authentication. As it stands today, SMBs and financial institutions will want to look at Cyxtera. Bundling DRP with DMARC should tempt security pros seeking better threat data, and BEC and web protection.
cyxtera customer Reference Summary
Customers chose Cyxtera because of its non-invasive approach to targeted attack prevention. They value its mobile app monitoring and web takedown support. They list alert automation, modernized dashboards and reports, and better integrations as ways Cyxtera could improve its product.
FIGURe 14 Cyxtera QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“Cyxtera has taken down hundreds of fake ads and mobile apps for us.”
“Great local support in South America.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedDigital Threat Protection
CyxteraWave position
CONTENDER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
19
The 14 Providers That Matter Most And How They Stack Up
Sweepatic: Forrester’s Take
Our evaluation found that (see Figure 15):
› Sweepatic stands out with attack surface mapping and counterintelligence beacons. Once Sweepatic captures data about domains and other digital assets, it applies advanced attribution and social link analysis to visually present implicit connections. It complements this analysis using hidden beacons to conduct counterintelligence, ensnaring adversaries and reporting on tactics and vulnerable digital assets back to customers.
› Sweepatic needs to scale. Founded in 2016, Sweepatic is still early in its growth phase, with the number of paying enterprise customers only reaching double digits this year.
› Sweepatic is best for early adopters interested in real-time digital risk visibility. Sweepatic’s capabilities are promising, but untested. For security leaders willing to commit resources to early-stage DRP solutions, Sweepatic offers an intriguing value proposition bringing new, valuable digital risk insight.
Sweepatic customer Reference Summary
Customers chose Sweepatic for its unique approach to digital footprint mapping and monitoring and limited regional alternatives. They’d like to see new UI features and functionality added to the tool.
FIGURe 15 Sweepatic QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“Sweepatic is an agile company with an innovative approach to digital footprint mapping.”
“Strengths are its data-leakage and domain-squatting protection.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedSweepatic Reconnaissance Platform
SweepaticWave position
CONTENDER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
20
The 14 Providers That Matter Most And How They Stack Up
cTM360: Forrester’s Take
Our evaluation found that (see Figure 16):
› cTM360 includes a mobile app with its DRP solution. Headquartered in Bahrain, CTM360 provides DRP capabilities to top financial institutions and oil and gas organizations in the Middle East. The product’s data charts and dashboards are colorful and easy to use, and full data outputs and alerts are viewable in its web portal and dedicated mobile app.
› cTM360 must improve its global appeal to compete in the DRP market. Social unrest and geopolitical issues will likely hamper interest in CTM360 outside of the Middle East until the company establishes trust among enterprise prospects that its financial viability, customer support, and ongoing development will remain stable.
› cTM360 is best for companies based in the Middle east. Based in Bahrain, CTM360 is worthy of consideration for organizations that need in-region DRP capabilities. It has competitive social, mobile, and web protection, plus about a dozen security partnerships.
cTM360 customer Reference Summary
Customers give CTM360 high marks for its dark web recon, takedown services, and “VVIP” (i.e., VIPs with high-spending power) protection. Image and trending analysis are areas for improvement.
FIGURe 16 CTM360 QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
“CTM360’s unlimited takedowns, regional coverage, and language support were top reasons for us.”
“Its detection capabilities help us protect our VVIPs.”
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedCyber Threat Management Platform
CTM360Wave position
CHALLENGER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
21
The 14 Providers That Matter Most And How They Stack Up
Axur: Forrester’s Take
Our evaluation found that (see Figure 17):
› Axur wins DRP deals in South America. Headquartered in São Paulo, Axur has a sizable presence in South America, predominantly in Brazil. Its DRP solution is competitive in all categories, but it lacks differentiating data collection, risk analysis, and remediation functionality. Its dashboard and UI are intuitive and easy to navigate.
› Axur needs technical differentiators. To fend off DRP competition in or outside of South America, Axur needs differentiating data, analytics, or remediation capabilities.
› Axur is the best fit for companies that want a DRP tool in South America. Axur is a viable DRP solution for organizations operating in South America, to address local risk events and avoid any language translation issues.
Axur customer Reference Summary
Forrester was unable to connect with Axur’s customer references.
FIGURe 17 Axur QuickCard
REFERENCE QUOTES
Differentiated On par Needs improvement
Forrester was unable to connect with Axur’s customer references.
Social & mobile risk prot.
Web risk protection
Dark web recon
Dig. risk analysis & review
Business attribution and asset mapping
Dashboard and UI
DRP breadth and depth
Vision and execution
Global reach and analysts
Thought leadership and strategic partnerships
Products evaluatedAxur ONE
AxurWave position
CHALLENGER
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
22
The 14 Providers That Matter Most And How They Stack Up
Engage With An Analyst
Gain greater confidence in your decisions by working with Forrester thought leaders to apply our research to your specific business and technology initiatives.
Forrester’s research apps for ioS and Android.Stay ahead of your competition no matter where you are.
Analyst Inquiry
To help you put research into practice, connect with an analyst to discuss your questions in a 30-minute phone session — or opt for a response via email.
Learn more.
Analyst Advisory
Translate research into action by working with an analyst on a specific engagement in the form of custom strategy sessions, workshops, or speeches.
Learn more.
Webinar
Join our online sessions on the latest research affecting your business. Each call includes analyst Q&A and slides and is available on-demand.
Learn more.
Supplemental Material
The Forrester New Wave Methodology
We conducted primary research to develop a list of vendors that met our criteria for the evaluation and definition of this emerging market. We evaluated vendors against 10 criteria, seven of which we based on product functionality and three of which we based on strategy. We also reviewed market presence. We invited the top emerging vendors in this space to participate in an RFP-style demonstration and interviewed customer references. We then ranked the vendors along each of the criteria. We used a summation of the strategy scores to determine placement on the x-axis, a summation of the current offering scores to determine placement on the y-axis, and the market presence score to determine marker size. We designated the top-scoring vendors as Leaders.
For Security & riSk ProFeSSionalS
The Forrester New Wave™: Digital Risk Protection, Q3 2018July 17, 2018
© 2018 Forrester research, inc. unauthorized copying or distributing is a violation of copyright law. citations@forrester.com or +1 866-367-7378
23
The 14 Providers That Matter Most And How They Stack Up
Integrity Policy
We conduct all our research, including Forrester New Wave evaluations, in accordance with the Integrity Policy posted on our website.
Endnotes1 From 2013 to 2018, VC funding in DRP vendors topped $482 million. Needless to say, the DRP market is hot right
now. New vendors, major venture capital (VC) funding, and fast-paced growth all reflect swelling demand. This report showcases the emerging class of DRP solutions, product strengths, and vendor maturity to guide your technology decisions. See the Forrester report “New Tech: Digital Risk Protection, Q2 2018.”
2 Source: The Forrester Digital Risk Protection New Wave Customer Reference Survey, 2018.
3 Source: The Forrester Digital Risk Protection New Wave Customer Reference Survey, 2018.
4 Source: The Forrester Digital Risk Protection New Wave Customer Reference Survey, 2018.
5 Though anecdotal, it was clear from our interviews with DRP customers that those with more cohesive and active cross-functional teams tended to lead more mature digital risk programs. If you want to assess your own digital risk maturity, use Forrester’s DRP Self-Assessment Tool. See the Forrester report “Assess Your Digital Risk Protection Maturity.”
6 The names for these formal, cross-functional teams varied significantly. Some of the more common terms for these groups were: “Digital Governance,” “External Risk,” “Digital Risk,” “Risk Oversight,” “Brand Security,” “Brand Protection”, “Crisis Management,” and “Cyber Fusion Center.” Source: The Forrester Digital Risk Protection New Wave Customer Reference Survey, 2018.
7 There are three core steps to effective digital risk protection: 1) Map your digital footprint; 2) monitor for indicators of compromise and abuse; and 3) mitigate risk events through rapid response. For more detail and to assess your own DRP maturity, see the Forrester report “Assess Your Digital Risk Protection Maturity.”
8 Social media is an incredibly valuable tool for cyberadversaries. It represents a treasure trove of data for social engineering, naïve targets for spearphishing, and a variety of applications to exploit. See the Forrester report “Four Ways Cybercriminals Exploit Social Media.”
9 Without this capability to restrict changes on third-party apps within social media accounts, savvy attackers that take over an account can easily scan for and deauthorize security apps on the social account’s third-party app list. Once the third-party security app is deauthorized, attackers can resume activity on the app and evade detection.
10 Source: “BC Partners and Medina Capital Announce Launch of Cyxtera Technologies,” Cyxtera press release, May 2, 2017 (http://www.medinacapital.com/press-releases/bc-partners-medina-capital-announce-launch-cyxtera-technologies/).
We work with business and technology leaders to develop customer-obsessed strategies that drive growth.
Products and services
› core research and tools › data and analytics › Peer collaboration › analyst engagement › consulting › events
Forrester research (nasdaq: Forr) is one of the most influential research and advisory firms in the world. We work with business and technology leaders to develop customer-obsessed strategies that drive growth. through proprietary research, data, custom consulting, exclusive executive peer groups, and events, the Forrester experience is about a singular and powerful purpose: to challenge the thinking of our clients to help them lead change in their organizations. For more information, visit forrester.com.
client suPPort
For information on hard-copy or electronic reprints, please contact client support at +1 866-367-7378, +1 617-613-5730, or clientsupport@forrester.com. We offer quantity discounts and special pricing for academic and nonprofit institutions.
Forrester’s research and insights are tailored to your role and critical business initiatives.
roles We serve
Marketing & Strategy ProfessionalscMoB2B MarketingB2c Marketingcustomer experiencecustomer insightseBusiness & channel strategy
Technology Management Professionalscioapplication development & deliveryenterprise architectureinfrastructure & operations
› security & risksourcing & vendor Management
Technology Industry Professionalsanalyst relations
141152
top related