One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 567914 |
| Date de publication | 2018-04-05 13:00:00 (vue: 2018-04-05 16:11:51) |
| Titre | 5 Key Questions You Need to Ask Your MSSP |
| Texte |
Managed security services providers (MSSPs) are increasingly popular. The new report, “Security Advisory Services Market by Service Type – Global Forecast to 2022,” indicates that the security advisory services market is expected to grow nearly 20 percent annually from USD $5.77 billion in 2017 to USD $13.57 billion by 2022.
There are several factors driving an increase in MSSP demand, including the expense of maintaining 24×7 network and cloud visibility, the need for specialized equipment, capital expenses, and the shortage of trained cyber security personnel. MSSPs can close the gaps in these areas.
If you’re thinking about hiring an MSSP, but don’t know where to start, you’re not alone. Not all MSSPs are created equal, and none have identical offerings and capabilities. Selecting the best match for your business can be complex, so here are some essential questions to help you succeed.
Where is Your Security Operations Center (SOC) Located?
I recommend selecting an MSSP with at least one operations center in your home country of operation. Of course, this will depend on your data privacy requirements as well. For instance, are you comfortable with your company’s data leaving your home country? If your MSSP will provide onsite remediation services (sometimes this is included, but usually it comes at a cost), selecting a provider near your geographical location will be key.
What’s Your Staff’s Average Number of Years of Experience and Certifications?
Staffing costs are the number one reason to seek out MSSP help. Depending on your requirements, for the same cost of hiring one or two full-time analysts, you can get the expertise of an entire MSSP staff to keep an eye on your network and alert you to any issues.
Some things you should find out about your MSSP are what certifications their staff has, and the average number of years of experience on the team. Price is going to be a key factor, as retaining highly-talented, certified, and experienced analysts can be expensive. We recommend roughly five to eight years of average experience team wide. In addition, a good rule of thumb is that at least 75 percent of their staff has completed rigorous technical certifications such as GCIH, GCIA, CCNP Security, or OSCP. You can read more about the OSCP in this helpful blog.
If you have someone technical on your team, you could ask more security-minded technical questions. Then again, it’s more likely than not that you’re seeking an MSSP because your team wouldn’t know a SQL injection |
| Envoyé | Oui |
| Condensat | $13 “security “self “top are ccnp check gcia price some 2017 2022 24×7 network a compliance a sql able about account act action actions actual addition additional administrative advice advisory again aggregate aggregation alert align all allowed alone analysts annually any architecture are areas around as gcih ask assistance average because before best billion block blog brainstorm business but can candidate capabilities capital cases center certain certifications certified close cloud comes comfortable company’s completed complex conclusion confidential connection consider: consume control cost costs could country course created credential customize cyber data decorative deem demand department depend depending device devices does don’t down driving eight encrypt entire environment equal equipment essential events example executed expected expense expenses expensive experience experienced expertise eye factor factors fall find finding five forecast from full function functions gaps geographical get global going good grow guide has have help help” helpful here highly hiring hit home how however ideal identical inbound include privacy included including increase increasingly indicates information information or injection if instance involve issues it’s keep keeping key kind know last least leaving like adopting likely located location lockouts logs maintaining malicious managed market match may means meet minded more most mssp mssps mssps’ multiple near nearly need network none not number occasional offerings offers offsite often one ones onsite operation operations or oscp organization oscp other out over people percent perform performed periodically personnel popular practices premises privacy processes provide provider providers pulling puppy – questions read reason recommend regulatory remediation remember report reports requirements rescue responsible rest retain retaining revolve right rigorous roughly rule run same sample scheme security seek seeking select selecting service services several shortage should site soaps soc some someone something sometimes sort specialized staff staff’s staffing start storage succeed such systems take taking talented team technical technology than the new them then these they’ll things thinking those through thumb time tips trained transit try two type typically under usd use usually visibility walk want well what what’s when where which who wide will wouldn’t years you’ll you’re your your ciso be your legal yours yourself zeros |
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.