Latest News  

Outsourcing security: What small businesses need to know

Forecasters predict that the booming managed security service provider (MSSP) industry will grow from $8 billion in 2015 to $30 billion by 2020.

2015-11-09 16:50:07

One question that small businesses often grapple with, especially in the early days of their development, is whether or not to outsource at least some aspect of their security, writes Ryan Berg in smallbusinesscomputing.com.

There are many instances when outsourcing computer, data, and network security makes sense:
• You may lack the appropriate in-house skills and resources
• You may not be in a position to make a full-time hire, let alone multiple hires
• You can't find the right person to fill a full-time role (Forbes expects our current cybersecurity workforce shortage to reach 1.5 million unfilled positions by 2019).
So does outside security help make sense for you? Possibly. But before you even think about outsourcing, you need to develop your own clear idea of what it is you actually need help with in the first place.

Outsourcing Cybersecurity 101

The simple truth is that you're not ready to outsource your small business security if any of these three points apply to your company.
• You can't clearly articulate your problem or goal
• You don't know where your assets reside or what data or systems you're trying to secure
• You don't have someone on board to actively own and manage the outsourced relationship

Small business owners must carefully avoid giving managed-security service providers the impression that they don't know what they need. The reality is many security vendors will see nothing but dollar signs; they may guide you to toward solutions that are easiest for them to implement instead of the solutions that best fit your needs.

Think of it this way: if you go to a brake shop because you think your car has a brake problem, you're more than likely going to cough up the cash for new brakes. Meanwhile, you may actually have a bigger issue with the car that remains unaddressed. Your shiny new brakes may work like a charm, but you can still get into an accident if the steering's off. And if you go back to the brake shop angry, they'll simply shrug and say of course they didn't protect you for that.

Advanced thought and planning is the best approach to outsourcing small business security. The worst thing you can say to a managed security service provider is, "I don't know where to start.

Outsourcing small business security works well only when you achieve these states:
• You have a clearly-defined problem to solve or goal to achieve.
• You find a vendor you work well with and can trust to deliver on your specific needs

There's no lack of outsourced security vendors from which to choose. But if you have a specific security goal that lends itself to outsourcing, you can whittle down the list to providers that specialize in that area. Then discuss these 10 essential topics with the managed-security service providers on your short list before you sign an agreement.

What to Ask Prospective Managed Security Service Providers

• Find out whether they've worked with small companies that are similar to yours in size, stage, and industry
• Get references
• Review their standards, policies, and procedures carefully
• Make sure all requirements and responsibilities will be documented in service level agreements (SLA) and/or statements of work
• Determine who on their side will manage your account and discuss your expected level of interaction (you don't want to enter a partnership expecting access to the Principal only to find out later that's not the case)
• Ask about reporting (what metrics do they measure, and how often do they report)
• Go over the game plan for incident response and recovery
• Ask about systems compatibility
• Make sure they can scale their protection as your company grows
• Have an exit strategy should the time come when you want to stop using their services

Small Business Security Caution

Remember, no one outside of your business values your business as much as you do. When you outsource aspects of your company's security you place your safety and success in their hands. You may pay for a level of professionalism, but when it comes down to it, an MSSP will act with its best interests in mind. Outsourcing isn't something you jump into quickly. Success requires a considerable amount of planning, discussion, and trust-building.

Ryan Berg is chief scientist at Barkly. A speaker, instructor, and author in the fields of security, risk management, and secure application development, Berg holds multiple patents. Prior to joining Barkly, he was chief security officer at Sonatype and chief scientist and cofounder of Ounce Labs.


0 COMMENTS ^ Go back to Top
WRITE A COMMENT ^ Go back to Top
 
Your email address will not be published.
Nickname
Email
Comment
Validation Code
   
 
 
NEWS
3Pillar Global hired 72 professionals this year, looking for further recruitments

Global custom software development company hired 72 IT specialists in 2019, adding to the team of 500 professionals working in the company's Romanian offices located at Cluj-Napoca, Iasi and Timisoara.

 Read Full article »
JLL: Total office space in Bucharest to reach 3 million sqm

The second quarter of 2019 reconfirmed the increased interest for the office market in Romania. Over 115,000 square meters of office space were leased over this period at the national level, a value similar wit

 Read Full article »
Horváth & Partners launches Steering Lab, Big Data and Machine Learning-based excellence center

Management consultant Horváth&Partners announced it launched an excellence center in Romania, Steering Lab, AI-based and using tools of Big Data and Machine Learning.

 Read Full article »
Colliers International takes over the property management of Vastint's Business Garden Bucharest

The real estate consultancy company Colliers International will be in charge with the property management of the office compound Business Garden Bucharest, developed by Vastint in Orhideea area in Bucharest.

 Read Full article »
Survey: Romanians switch to a lower-paying job for other advantages

One out of five Romanians took at least once throughout their career a lower-paying job and two out of five would take a lower-paying job in exchange for other advantages they see as more valuable, a survey con

 Read Full article »
Fujitsu named a leader in Gartner Magic Quadrant for Data Center Outsourcing and Hybrid Infrastructure Managed Services, Europe

Gartner has once again named Fujitsu a Leader in the 2019 Gartner Magic Quadrant for Data Center Outsourcing and Hybrid Infrastructure Managed Services, Europe. This is the seventh consecutive year that Fujitsu

 Read Full article »
KKR enters exclusive negotiations with GBL for Webhelp Group

KKR, a leading global investment firm, announces it has entered into exclusive negotiations to sell a majority stake in the Webhelp group to Groupe Bruxelles Lambert (GBL). GBL will invest alongside Webhelp's

 Read Full article »
TELUS International continues to grow in Bucharest

In order to support the extensive hiring planned for TELUS International in Bucharest this year, the company has acquired 1,200 sqm more space, in addition to the 8,800 sqm office space it has in AFI Park.

 Read Full article »
EY: Four out of five companies plan to reduce their legal spend over the next two years

Eighty-two percent of companies plan to reduce their legal function costs over the next two years, with 42 per cent of respondents planning on doing so by more than 10 per cent, according to a new report releas

 Read Full article »
ANCOM: About 15 million connections affected by security

About 15 million connections were affected in 2018 by security incidents that had in view the security and integrity of electronic communications networks and services, most of them being about mobile telephony

 Read Full article »
 
 
 
MOST READ ARTICLES
» Raiffeisen Bank Romania outsources onl...
» Horváth & Partners launches Steering ...
» JLL: Total office space in Bucharest t...
» Genpact, Luxoft and Oracle, top lessee...
» SSC in Romania. Who takes the lion's s...
» Oracle results pushed down by a strong...
» World-class HR organizations now spend...
» Romanian employers report the stronges...
» ROMANIAN OUTSOURCING AWARDS FOR EXCELL...
» Eucom: Nine out of ten corporate Roman...
 
EDITOR CHOICE
My HR Lab: Research of suitable candidates and giving feedback to rejected ones, the biggest challenge in HR

During June 2019, My HR Lab company run an online (social media platforms) survey "Challenges of the recruitment process" which enrolled over 100 professionals working in HR and recruitment in Romania.

 Read Full article »
The local market needs more added-value and complex projects to be developed by the companies

The statement has been uttered within this year's Romanian Outsourcing and Shared Services Summit by Catalina Dodu, Country Manager at Atos, pointing to the local enablers that could enhance the innovation and

 Read Full article »
The office market at a glance: The round for tenants is on

Data provided by CBRE show that the office spaces segment will continue to grow rapidly in 2019, and 15 new projects covering 304.000 sqm will be delivered. According to the real estate consultancy agency, curr

 Read Full article »
People Empowering Business Forum 2019 to take place on October, 30 at Bucharest

Latest trends like demographic upheaval, globalization, digital technology, and changing social values and worker expectations, are disrupting business models and radically changing the workplace. These are req

 Read Full article »
Addressing the mantra of cyber-security: Confidentiality, integrity and availability

The fast advancement of technology in all the aspects of everyday life, either personal or professional, and the emerging of AI (Artificial Intelligence) and ML (Machine Learning), not to mention cloud technolo

 Read Full article »
Latest News  
 
about us | newsletter | contact | members area | GDPR policy
Copyright © 2015 by Diplomat Media Events Design by Diplomat Media Events