Latest News  

Outsourcing security: What small businesses need to know

Forecasters predict that the booming managed security service provider (MSSP) industry will grow from $8 billion in 2015 to $30 billion by 2020.

2015-11-09 16:50:07

One question that small businesses often grapple with, especially in the early days of their development, is whether or not to outsource at least some aspect of their security, writes Ryan Berg in smallbusinesscomputing.com.

There are many instances when outsourcing computer, data, and network security makes sense:
• You may lack the appropriate in-house skills and resources
• You may not be in a position to make a full-time hire, let alone multiple hires
• You can't find the right person to fill a full-time role (Forbes expects our current cybersecurity workforce shortage to reach 1.5 million unfilled positions by 2019).
So does outside security help make sense for you? Possibly. But before you even think about outsourcing, you need to develop your own clear idea of what it is you actually need help with in the first place.

Outsourcing Cybersecurity 101

The simple truth is that you're not ready to outsource your small business security if any of these three points apply to your company.
• You can't clearly articulate your problem or goal
• You don't know where your assets reside or what data or systems you're trying to secure
• You don't have someone on board to actively own and manage the outsourced relationship

Small business owners must carefully avoid giving managed-security service providers the impression that they don't know what they need. The reality is many security vendors will see nothing but dollar signs; they may guide you to toward solutions that are easiest for them to implement instead of the solutions that best fit your needs.

Think of it this way: if you go to a brake shop because you think your car has a brake problem, you're more than likely going to cough up the cash for new brakes. Meanwhile, you may actually have a bigger issue with the car that remains unaddressed. Your shiny new brakes may work like a charm, but you can still get into an accident if the steering's off. And if you go back to the brake shop angry, they'll simply shrug and say of course they didn't protect you for that.

Advanced thought and planning is the best approach to outsourcing small business security. The worst thing you can say to a managed security service provider is, "I don't know where to start.

Outsourcing small business security works well only when you achieve these states:
• You have a clearly-defined problem to solve or goal to achieve.
• You find a vendor you work well with and can trust to deliver on your specific needs

There's no lack of outsourced security vendors from which to choose. But if you have a specific security goal that lends itself to outsourcing, you can whittle down the list to providers that specialize in that area. Then discuss these 10 essential topics with the managed-security service providers on your short list before you sign an agreement.

What to Ask Prospective Managed Security Service Providers

• Find out whether they've worked with small companies that are similar to yours in size, stage, and industry
• Get references
• Review their standards, policies, and procedures carefully
• Make sure all requirements and responsibilities will be documented in service level agreements (SLA) and/or statements of work
• Determine who on their side will manage your account and discuss your expected level of interaction (you don't want to enter a partnership expecting access to the Principal only to find out later that's not the case)
• Ask about reporting (what metrics do they measure, and how often do they report)
• Go over the game plan for incident response and recovery
• Ask about systems compatibility
• Make sure they can scale their protection as your company grows
• Have an exit strategy should the time come when you want to stop using their services

Small Business Security Caution

Remember, no one outside of your business values your business as much as you do. When you outsource aspects of your company's security you place your safety and success in their hands. You may pay for a level of professionalism, but when it comes down to it, an MSSP will act with its best interests in mind. Outsourcing isn't something you jump into quickly. Success requires a considerable amount of planning, discussion, and trust-building.

Ryan Berg is chief scientist at Barkly. A speaker, instructor, and author in the fields of security, risk management, and secure application development, Berg holds multiple patents. Prior to joining Barkly, he was chief security officer at Sonatype and chief scientist and cofounder of Ounce Labs.


0 COMMENTS ^ Go back to Top
WRITE A COMMENT ^ Go back to Top
 
Your email address will not be published.
Nickname
Email
Comment
Validation Code
   
 
 
NEWS
CBRE report: Romania, among the main destinations for outsourcing investments in Europe

Romania is among the main destinations for the Business Services Sector, which looks for well qualified staff, employment cost savings and good quality office space, according to CBRE's Business Services Destin

 Read Full article »
Vodafone Romania and ASE Bucharest opened new IT laboratory in University's building

Vodafone Romania and the Bucharest University of Economic Studies inaugurate the new IT laboratory located in "Virgil Madgearu" building on Calea Dorobanti, finalized through a renovation and modernization proj

 Read Full article »
CTP is launching a project for the workforce market in the areas near its parks in Western Bucharest

CTP, the leading premium industrial parks developer and long-term manager in Romania and Central and Eastern Europe, is starting a social responsibility program that aims to facilitate a series of meetings betw

 Read Full article »
AI, the "performance engine" in Romania's business service industry

ABSL (the Association of Business Service Leaders in Romania) debated during its annual conference the future of the business service industry in our country and AI's influence in this sector's performances.

 Read Full article »
JLL Bucharest City Report: Industrial, logistics and offices were the drivers of the Romanian real estate development market

The industrial, logistics and office sectors in Bucharest were the drivers of the real estate development market in the first nine months of the year, while the retail sector recorded the lowest growth rate in

 Read Full article »
Microsoft extends partnership with Romania's Bitdefender to global level

Microsoft has extended its partnership with Romanian cybersecurity and anti-virus software company Bitdefender to a global level, Gabriela Matei, General Manager, Microsoft Romania announced at the 2017 Microso

 Read Full article »
Certent opens new office in Bucharest

Certent, Inc., a leading provider of software-as-a-service (SaaS) solutions for equity compensation and financial disclosure management today announced the opening of a new office in Bucharest, Romania.

 Read Full article »
Companies leased 45,000 sqm of office space in Q3 IT and outsourcing players – the main drivers of demand

The Bucharest office market saw a net take-up of close to 45,000 sqm in this year's third quarter. According to data from the real estate consultancy company Colliers International, the demand came mostly from

 Read Full article »
ABSL: The negative Impact of EO draft will lead to decrease of FDI and employment rate

ABSL Romania examined the emergency ordinance draft to amend the law no. 227/2015 regarding the Fiscal Code and concluded that the implementation of these measures will have a negative impact on Romania's inter

 Read Full article »
Farlei Kothe becomes EMEA vice president at Stefanini

In two years, he built a team of 200 people from scratch and made us 20 million US dollars revenues.. For the last nine years, he's been with us – first as the manager for our application development centre a

 Read Full article »
 
MOST RECENT VIDEO
 
 
MOST READ ARTICLES
» ROMANIAN OUTSOURCING AWARDS FOR EXCELL...
» Gartner: Romania moved into the first ...
» ABSL: BRD First Tech challenge in Roma...
» Molson Coors started to grow its busin...
» Roxana Tesiu appointed as the new Vice...
» Vastint Romania celebrated the opening...
» Healthcare IT outsourcing market is ex...
» Exclusive OT print issue: Genpact may ...
» Manpower:Romania has world's third hig...
» ManpowerGroup launches ManpowerGroup S...
 
EDITOR CHOICE
Telus International Europe: Discover how successful smart-home providers deliver exceptional customer service

Key Takeaways

• Internet of Things (IoT) connected home devices are making the contact center and customer service more important than ever. • A friendly approach and positive attitude are import

 Read Full article »
Societe Generale European Business Services support the IT education in Romania through a partnership with ACADEMY+PLUS

Societe Generale European Business Services (SG EBS), part of Societe Generale Group announces a partnership with ACADEMY+PLUS, a revolutionary coding school, tuition free, opened this year in Bucharest.

 Read Full article »
TELUS International Europe: The convergence of customer service and digital marketing/NewGen technologies: What does it mean for businesses?

Technology shapes the way we educate, communicate, conduct business and advance science, all while maintaining significant influence on the global economy. But the way we engage with technology is changing

 Read Full article »
Stay updated on People in Shared Services and Outsourcing Forum, October 19

Outsourcing Today organizes the third edition of People in Shared Services and Outsourcing Forum, on October 19, 2017 in Bucharest at Caro Hotel.

 Read Full article »
Preparing for the new future

Business shared services in Romania is by nature a flexible, mobile and diverse community and in this context, local markets develop their own particularities to address the global changes, to adjust to new dem

 Read Full article »
Latest News  
 
about us | newsletter | contact | members area
Copyright © 2015 by Diplomat Media Events Design by Diplomat Media Events