 |
Tips on Choosing a
Managed Security Service Provider (MSSP)
From Computer Products and Networks, LLC.
|
|
There
is a definite trend at the moment towards
outsourcing Internet security to
a Managed Security Service Provider (MSSP),
and there are many solid reasons for this.
But first, just what is a MSSP? According
to the Gartner Group, an MSSP "provides
monitoring and management of security
devices and systems. Common services include
managed firewall, intrusion detection,
virtual private network and anti-viral
services. MSSP's use high-availability
security operation centers to provide
24x7 services designed to reduce the number
of operational security personnel an enterprise
needs to hire, train and retain to maintain
an acceptable security posture".
There is no doubt that security expertise
is scarce. This is one of the reasons
contributing to the movement towards using
an external MSSP. In addition it is just
too resource intensive and expensive for
businesses to handle these functions internally.
There is too much competition for the
correct skills.
Even if you can find the right skills,
it can be hugely expensive to retain them.
There are also other resource-hungry concerns,
such as the setting up of the right infrastructure,
the mindshare required from management
to ensure that the security program works,
human resources costs and ongoing capital
outlay. It is just impossible for companies
these days to be able to provide all the
requirements needed to ensure network
integrity on an ongoing basis.
4 Things to Look For
What should an organization look out
for when considering an MSSP? Here are
some tips suggested by the Gartner Group:
1. Look at the depth of management
skills within the group.
It is not enough to merely have
highly qualified security skills, there
also needs to be strong business and
management back-up.
2. Consider what the MSSP is offering
you
Internet security should be as comprehensible
as possible. Services should include
the standard solutions such as firewalls
and intrusion detection, but should
ideally also incorporate managed security
consulting and reporting.
3. Check into the quality of the
reporting.
A reputable MSSP will report back
on all Internet security related issues,
and will assist in strategizing an Information
Security Management Policy for the organization.
Comprehensive reports should be provided
detailing all detected vulnerabilities
and threats, and prioritizing these
according to urgency of action. There
should also be real-time reporting of
any significant vulnerabilities or weaknesses
requiring immediate mitigating action.
4. It is important that the MSSP
itself have clear policies and procedures
in place.
An organization that outsource Internet
security is looking for high availability
of service and infrastructure. Ensure
the MSSP adheres to standards that will
allow for on-going operations in both
normal and abnormal situations, such
as a compromise of the network. However,
once the above factors have been considered,
the most vital criteria when choosing
an MSSP is trust. Do you trust them
to provide quality of service, and swift
response when faced with a security
threat?
The industry is growing, a classic case
of supply and demand, but do not be
fooled by 'fly-by-night' operations.
Trust and repudiation take time to establish
and an MSSP needs to be able to show
that it understands security and can
be trusted to manage that of your organization.
|
|
|
|
|
|
 |
|
