(Khalid Kark, NetworkWorld) Every New Year brings an opportunity to review existing security plans and adjust strategies for the next year. Most CISOs are struggling with the same issues, ranging from dealing with the changing threat landscape to properly supporting the rising adoption of social technologies, employee-owned mobile devices, and cloud services.

Given security leaders' pain points and focus areas for 2011, Forrester has identified recommendations for security strategies that address the broad security trends in the current market. Our recommendations fall into three major themes:
1. Better governance structures (prepare for social technology adoption, help the business devise a strategy to leverage cloud services, actively support mobility in the post-PC era);
2. More mature security processes (from reactive tools to proactive focus on integrating tools and processes, from identity management to information and access management, from ineffective incident planning to robust breach response);
3. Improved analytics and reporting capabilities (educate and equip risk owners with relevant information for decision-making, demonstrate the value of security with business and financial metrics, enhance operational measures through validation and correlation).