SECURITY
“
MSSPs have the dexterity to be able to routinely review their service offerings and the vendors they work with, which means they can assess and deploy cutting edge technologies more easily and move with the market.
security strategy, it can help the business to reach its business goals. MSSPs can demonstrate that they are adding value by expanding their reporting capabilities. If they capture not just the usual metrics and performance statistics but also analyse the health and performance of the technology as well as configuration change management, they can show how the service has directly led to an increase in security maturity, proving their worth. Plus, because a cost isn’t assigned to each change to the SLA, rolling improvements become part of service delivery. Those improvements go both ways; they make the client more secure, but also make it easier for the MSSP to oversee their security. But, if the business does not improve its cyber maturity, its exposure to risk increases over time, making it more susceptible to attack and difficult to protect. Maturity and resilience The 2025 Cyber Benchmark report, which measured security posture against the NIST Cybersecurity Framework v2.0 and ISO27001, found the average maturity
level of large corporations (classed as turning over more than one billion euros in revenue annually) stood at 54%. That means that almost half of big business is not cyber ready. If those businesses are tied into contracts spanning years in which they are disincentivised to make changes to head off threats, they’re effectively becoming weakened over time. Ultimately, it’s in everyone’s interests to improve resilience. But current servicing models take the opposite tack because it’s seen as easier and more cost effective NOT to change the way things are done. It’s a commercial and a national necessity that those providing outsourced security services adopt a more agile approach. For SIs this presents a problem. They’re often too big and unwieldy to provide such flexibility. But MSSPs have the dexterity to be able to routinely review their service offerings and the vendors they work with, which means they can assess and deploy cutting edge technologies more easily and move with the market. The question is whether they realise they have the advantage or continue to skulk in the shadow of the SIs. n
”
www.newsinthechannel.co.uk
45
Powered by FlippingBook