EXPERT SPEAK
MSSP CHECKLIST : TIPS FOR ACHIEVING SUCCESS
Today , nearly every customer has a complex environment , regardless of company size . Most customers have multiple point products that create gaps in visibility and control . Jonathan Nguyen-Duy , Vice President , Global Field CISO , Fortinet , shares tips that managed security services providers ( MSSPs ) can utilise to achieve success in this sought-after market .
Complicated IT environments and expanding network edges create new cybersecurity risks . In response to the evolving threat landscape , more companies have turned to managed security service providers ( MSSPs ) who can provide access to hard-to-find security expertise and the latest technology . To position themselves competitively in a crowded market , MSSPs must offer the right combination of services , around-the-clock protection as well as , cost effective solutions that deliver better risk management and compliance . It ’ s a two-fold challenge that requires speed and scale in detection and response for more competitive value propositions .
MSSP success checklist
Creating a successful service offering means understanding customers ’ security and business objectives . To help customers achieve these goals , an MSSP must establish a robust set of offerings that offer access to the latest technologies and security expertise at a price point that makes sense .
Actionable alerts
Most customers begin their evaluation process by reviewing an MSSP ’ s solutions . Information overload and alert fatigue is a common problem facing security teams so the ability to address security monitoring is a
Jonathan Nguyen-Duy , Vice President , Global Field CISO , Fortinet key requirement . Without high-fidelity alerts that correlate events effectively , security teams find themselves spending too much time investigating false alerts .
To help address these problems , MSSPs must provide customers with aggregated alerts enriched with context that reduce false positives , while also helping to define , guide , and accelerate investigations . MSSPs who can enable prioritisation based on severity levels with technology that streamlines task assignments and automate response can differentiate themselves from other providers .
Advanced threat detection
In addition to alerts , advanced threat detection is also tied to the MSSP ’ s ability to incorporate advanced threat intelligence into its offering . With threat actors continually improving their tactics , techniques and procedures customers want a provider with real-time access to robust threat intelligence that can quickly detect attacks at machine speed . While many customers may already subscribe to threat intelligence feeds , disaggregated information across a fragmented security architecture actually creates security gaps and increases key metrics like mean times to detect and respond .
MSSPs need to support actionable alerts with high-quality threat intelligence . When combining the two in a single pane of glass , an MSSP can help customers respond to zero-day attacks , other emerging threats , as well as variations of known attacks more rapidly , and thereby reduce the likelihood of a data breach .
SOC services
MSSPs offer more than just access to the latest technologies . Customers also turn to their providers for services , including talking to experienced people who can guide them through the incident response process . The cybersecurity talent gap leaves many companies struggling to find the right staffing to protect their systems , network , and data . Often , customers turn to an MSSP
54 www . intelligenttechchannels . com