PRO+ Premium Content/Information Security
Access your Pro+ Content below.
Outsourcing security services rises as MSSPs focus on industries
This article is part of the Information Security issue of April 2017, Vol. 19, No. 3
The rise in attacks and persistent threats has expanded the demand for information security services, with some estimates expecting the market size to double in the next five years. Information security is getting harder to achieve as the complexity of environments and security infrastructure requires skill sets and resources many companies do not have, analysts say. Regulatory compliance is also driving more companies to consider outsourcing security services, especially small and medium-sized businesses that may not have been drawn to outsourcing security services outside of cloud. Depending on the provider, companies can "buy" hardware, software and infrastructure along with the specialists to manage these services. Some managed security service providers can also help ensure clients are up-to-date on the Payment Card Industry Data Security Standard, HIPAA and other standards. But strategy implementation is still up to the CISO. One criticism of MSSPs is that despite increasing levels of specialization, most do not have ...
Features in this issue
-
MSSPs add advanced threats as managed security services gain hold
Skill shortages and budget constraints have lead some companies to adopt a hybrid approach to managed security. Is it time for CISOs to start looking for 'expertise as a service'?
-
In her new role of CISO, Annalea Ilg is curious, driven and paranoid
The vice president and CISO of ViaWest, Ilg is tasked with keeping the IT managed service provider and its cloud services secure.
Columns in this issue
-
Outsourcing security services rises as MSSPs focus on industries
Despite increasing levels of specialization, managed security service providers often don't understand the business you're in. That may be changing.
-
Chenxi Wang discusses DEF CON hacking conference, 'Equal Respect'
Grassroots efforts to shift cultural thinking in information security have had a positive effect, the former professor of computer engineering says.