//////////////////////////////////////////////////////////////////////////
FEATURE: CYBERSECURITY
CIOS MUST HAVE A CLEAR PICTURE OF
WHAT THEIR MSSP’S RESOURCES
ARE DOING AND WHEN.
What makes a good MSSP?
Stephan Berner, CEO, Help AG Middle East
with the wealth of information they need to
analyse and act upon. Furthermore, MSSPs
can invest in best-of-breed technologies
that customers – especially SMBs and SMEs
– simply would not be able to afford. The
pay-as-you-go model lends itself to both
upward or even downward scalability. And
then, availability is also a factor as with an
MSSP, customers get 24x7 support with
assured 99+% availability which ensures
that business is always on.
www.intelligentcio.com
The excellent MSSP is made just like your
favourite dish of your childhood cooked
in mum’s kitchen. All the ingredients are
handpicked, utilised in the most refined way,
followed by a stringent process, automated
and innovated over years of experience,
provided to the loveliest but nagging family
members, prepared and served by the best
person in the world.
Best practice for CIOs assessing
which provider to use
There are several criteria CIOs will need to
use when evaluating MSSPs and among
these, key aspects include:
Regulations: By outsourcing security, CIOs
may be addressing certain regulations
while moving away from others. For
instance, a regulation may require 24x7
environment monitoring so, by engaging a
24x7 security monitoring service, this would
be addressed.
Another regulation may restrict the
organisation’s ability to push data outside
the country which might be violated by the
security monitoring service. CIOs therefore
need to ensure therefore that they have
reviewed applicable restrictions and engaged
with a provider that addresses them
Rapid response: The unfortunate reality of
cybersecurity today is that no system can
be 100% secure and security breaches are
inevitable. Hence incident response with
‘boots on the ground’ is a must. CIOs must
consider the MSSP’s incident response SLAs
to understand how soon (hours/days) they
can assign resources and ensure availability
of experts
INTELLIGENTCIO
59