Ways for MSSPs to Survive in the New Infosec Age

Adi Dar | May 02, 2018

Ways for MSSPs to Survive in the New Infosec Age
Over the course of the last few years we have experienced the cybersecurity reality changing dynamically in front of our eyes: multi-vector attacks are increasingly common, file-less attacks are presenting new detection challenges, and ransomware can now not only lock a workstation, but propagate across the organization and disrupt the entire operation. These, and other emerging threats, have changed the way we think and practice cybersecurity. As a result, the role of cybersecurity organizations has become significantly more complex and challenging. However, more than anything else we are experiencing a dramatic increase in the shortage of skilled cybersecurity professionals. This shortfall has become the number one obstacle for CISOs in establishing an effective cyber security operation. To solve the problem, many organizations are outsourcing their entire Security Operation Center (SOC). This trend is driving explosive growth of the managed security service provider (MSSP) market. Driven by fierce competition, MSSPs are seeking new and innovative ways to expand their offering and solve more pieces of the cybersecurity puzzle for their customers. Many of them expanding from perimeter security and managing devices, to managing threats and providing hunting, incident response (IR) and managed detection and response (MDR) services. As MSSPs strive to remain competitive during this shifting landscape, they are faced with many challenges. For example, MSSPs are challenged with having to deal with multiple security vendors and integrate them into their technology stack. Today, most traditional MSSP IT customers manage some level of OT assets, ICS networks, and IoT assets. Attackers have more ways to penetrate the organization and they traverse across these environments to locate critical assets, resulting in an expanded and converged attack surface. MSSPs also work with anywhere between dozens of customers for the smaller providers, to thousands for the large MSSPs. They are managing tens of thousands of events per day, even more in some cases!

Spotlight

New stories of widescale cybersecurity hacks, crimes and vulnerabilities seem to pop up on a daily basis. The constant stream of adverse cyber events has unfortunately caused many small businesses and consumers to live with a dread of inevitability — no matter what they do to protect themselve


Other News
DATA SECURITY

Cynalytica Delivers New Solution to Help Combat Cyber Threats to Maritime Navigation and Communication Systems

Cynalytica | September 20, 2021

Cynalytica Inc. announces its SerialGuard AnalytICS Platform now offers monitoring, deep packet inspection (DPI) support, and intrusion detection for legacy NMEA protocols. Its latest extension provides enhanced situational awareness and security to vulnerable maritime Industrial Control Systems (ICS) through NMEA-specific packet evaluations, analysis, and intrusion detection capabilities. "In addition to the serious threats posed to their OT network, one of the maritime industry's biggest security challenges today is the protection of their navigation and communications systems from persistent cyber threats. Vessels are increasingly vulnerable to cyber attacks that c...

Read More

SOFTWARE SECURITY

IPKeys Power Partners Announces New Grid Cyber Security Breakthrough

IPKeys | September 09, 2021

IPKeys Power Partners, the leading cybersecurity, cyber compliance, and smart grid technology company, announced today the release of its groundbreaking SigmaFlow Beacon platform to provide utilities, generators, and grid operators a simple, unified solution for cybersecurity monitoring and compliance requirements. The SigmaFlow Beacon platform is built specifically to help organizations align with North American Electric Reliability Corp. (NERC) compliance mandates. It provides NERC registered entities with a single solution to advance, simplify and improve existing cybersecurity and monitoring requirements. "We are pleased to provide utilities, generators...

Read More

PLATFORM SECURITY

Stellar Cyber Partners with SonicWall for Advanced Prevention, Response

Stellar | September 08, 2021

Stellar Cyber, the innovator of Open XDR, the only intelligent, next-gen security operations platform, announced today that it has joined the SonicWall SecureFirst Partner Program to integrate Stellar Cyber’s advanced threat detection and response with SonicWall’s award-winning prevention technology. This combination of prevention, detection and response provides an outstanding platform for enterprises that want to stop many attacks before they occur while detecting and remediating complex threats. “As a customer of both SonicWall and Stellar Cyber, it’s great to see these two solutions working together,” said Michael Crean, CEO of Solutions Grant...

Read More

SOFTWARE SECURITY

Minimize Cybersecurity Risk and Relieve Overstretched Security Teams with Trend Micro Support and Service Bundles

Trend Micro Incorporated | September 07, 2021

Trend Micro Incorporated a global cybersecurity leader, today announced the launch of Trend Micro Service One, consolidating its managed services to optimize enterprise threat management. The new services bundles, which can include premium support, an early warning service, Managed XDR and incident response, help customers prevent, detect and respond to cyber threats faster by supplementing internal resources. The prevalence of cybersecurity threats and the dynamic threat landscape leave businesses vulnerable and put security experts in high demand to triage and investigate incidents. According to Aaron Sherrill, Senior Research Analyst at 451 Research, part of ...

Read More

Spotlight

New stories of widescale cybersecurity hacks, crimes and vulnerabilities seem to pop up on a daily basis. The constant stream of adverse cyber events has unfortunately caused many small businesses and consumers to live with a dread of inevitability — no matter what they do to protect themselve

Resources

Events