Managed Security Service Providers

Managed Security Service Providers Overview

What are Managed Security Service Providers (MSSPs)?

Managed security service providers, also known as MSSPs, provide cybersecurity outsourcing options covering a range of security needs. These services may include patching and vulnerability management and reporting, threat intelligence, incident response, and other services. Additionally, MSSPs provide their own expertise and knowledge on emerging threats and security developments.


MSSPs can use either their own security technology or deliver 3rd party technology to their clients and end-users. The security software itself is managed remotely by the provider. This outsourcing reduces or eliminates the client business’s need for in-house hardware, IT resources, or knowledge experts. Managed security service providers also offer more specialized expertise than many smaller in-house operations would be able to source themselves.


MSSPs vs. MSPs

Managed Security Service Providers (MSSPs) are a subset of Managed Service Providers (MSPs). MSPs encompass a much wider range of IT functions and operations, including managing cloud infrastructure, cloud computing, and other resource or operationally-intensive functions. In contrast, managed security service providers specialize in removing digital security burdens from their clients’ IT or operations teams. In order to focus on the unique expertise and resources required in digital security, there is very little overlap between managed security service providers and broader MSPs.

Managed Security Service Areas


Most security capabilities can be managed in some capacity by a third-party provider. Some of the most commonly outsourced security services include:


  • Firewalls, including network or web application firewalls

  • Intrusion detection

  • Virtual Private Networks (VPN)

  • Anti-virus

  • Endpoint security

  • Network monitoring

  • Compliance monitoring

  • Identity Management


Managed security service providers give clients the added benefit of various services around the core functionalities. These services and support areas include:


  • Configuration management

  • Incidence response

  • Policy development

  • Security updates

  • Reporting

  • Training and education, particularly training against behavioral threats like phishing


Managed security service provider comparison


When comparing managed security service providers, consider these factors:


  • Ease of implementation: The largest burden on end-users when working with a managed security provider is the initial implementation process. Consider how intensive a process implementation is, including necessary agent installations on devices or networks. For more complex organizations with a wider range of devices, the implementation may also be a more complex process.

  • Point Solution vs. Security Suite: Some MSSPs focus on delivering specific security services, such as firewalls or identity management. Others provide comprehensive security packages, in the vein of Unified Threat Management offerings. While UTM-level services can provide all-in-one security services, some organizations may only need certain security services, or may just need to supplement existing security capabilities in specific areas.

  • Additional services offered: Consider what non-capability services that each MSSP offers. Depending on the organization, additional training around behavioral security may be particularly beneficial, while others with a greater focus or protecting sensitive data may place greater emphasis on white glove policy development.


Pricing Information


Managed security service providers price their offerings on a subscription basis, usually monthly. Some providers give a flat fee company-wide, while others price their services per user. Pricing varies dramatically depending on the range of security services offered, from $20/user/month to hundreds of dollars per user, per month.

Managed Security Service Products

(1-25 of 48) Sorted by Most Reviews

CrowdStrike Falcon Endpoint Protection
21 ratings
13 reviews
CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment with no performance…
Masergy
3 ratings
1 review
Masergy provides managed communications and contact center (powered by Cisco Webex), managed SD-WAN (powered by Fortinet), as well as managed security services.
SecureWorks Managed Security Services
2 ratings
1 review
SecureWorks Managed Security Services provides threat protection,asset protection, cybersecurity risk management, and security operations services.
Mandiant Managed Detection and Response (FireEye as a Service)
Mandiant Managed Detection and Response (MDR), formerly known as FireEye as a Service, is a managed detection, investigation and response service that minimizes the potential business impact of increasingly sophisticated and targeted cyber attacks.
Delta Risk
Recognizing the increasing number of cyber threats, Delta Risk was founded in October 2007 by a small cadre of former U.S. military operations experts who had a vision of helping private sector and government organizations build advanced cyber defense and risk management capabilities. From its r…
Optiv Managed Security Services
Optiv is a cybersecurity company providing managed security services and solutions focused on cyber security strategy, identification and remediation of threats and risks, and assistance in selecting and deploying the right technology to protect against malicious attacks.
VMware Carbon Black Cloud Managed Detection (formerly CB ThreatSight)
VMware Carbon Black Cloud Managed Detection (formerly CB ThreatSight) is a managed alert monitoring and triage service staffed by a team of threat experts who keep watch over the user's enterprise environment and notify in-house teams of emerging threats. VMware acquired Carbon Black October 2019.
BT Managed Security Services
BT offers Managed Security Services including firewall and DDoS, Cloud, email and web security, as well as providing advanced cyber threat detection services.
BAE Systems Managed Security Services
BAE Systems specializes in defense and aerospace, and also offers managed security services which emphasize network security and monitoring, structural security, and best practice threat response, as well as proactive threat hunting.
Raytheon Managed Security Services
Multinational aerospace and defense company Raytheon also offers managed IT cyber security services via its Raytheon Cyber division, featuring proactive threat hunting, incident response with digital forensics, the virtual security operations center (V-SOC), and continual assessment.
CenturyLink Managed Firewall Service
CenturyLink® Managed Firewall Service delivers 24/7 firewall administration and proactive response to attacks. Whether we supply the hardware or manage what you already own, you have more time to focus on your core business competencies while we handle operational details. All security services are …
DXC Managed Security Services
DXC Technologies provides managed security services, including vulnerability and threat location and remediation, incident response, identity and access management, infrastructure and endpoint security, cloud security, and data privacy.
Kaspersky Cybersecurity Services
Kaspersky Labs' managed cybersecurity services include vulnerability asessment, threat hunting and threat intelligence services, and managed incident response.
Herjavec Group Managed Security Services
The Herjavec Group (HG) offers Managed Security Services.
Booz Allen Managed Threat Services (MTS)
Booz Allen Managed Threat Services (MTS) is a managed security service, combining threat intelligence with managed detection, 24/7 threat detection and monitoring, and active support from Booz Allen Hamilton analysts.
Rackspace Managed Security Services
Rackspace provides managed security services.
Wipro Managed Security Services
Indian-based Wipro Managed Security Services covers a wide range of cybersecurity and risk services.
AhnLab Managed Security
AhnLab headquartered in S. Korea offers managed security services including endpoint protection, forensics, assessments and vulnerability management, and intrusion response.
Trustwave Managed Security Services
Trustwave Managed Security Services include managed threat detection and response, as well as proactive threat hunting, endpoint and application security, as well as compliance support.
Cisco Managed Security Services
Cisco Managed Security Services focuses on advanced threat and anomaly detection, as well as providing updated threat intelligence.
TCS Cyber Security Managed Services
Tata Consultancy Services (TCS) offers managed security.
Cybereason Managed Detection & Response (MDR)
Cybereason Managed Detection & Response (MDR) is a managed security service emphasizing behavioral analysis and incident response.
Accenture Managed Security Services
Accenture provides managed security services, managed identity, and managed application security.
Verizon Managed Security Services
Verizon provides managed security services, including DDoS protection, web security gateway, data breach and threat detection, as well as intrusion or incident response.
Stefanini Security Services
Stefanini provides managed security services designed to support security posture and security architecture. Services encompass consultation, design and implementation of security products, Security Operations Center (SOC), vulnerability management, endpoint security, network security, and identity …

Frequently Asked Questions

Why use a managed security service provider?

Managed security service providers are best used when organizations do not have the in-house resources to purchase, implement, and manage all of the security functions necessary to protect the business, its data, and its customers.

What is managed detection and response?

Managed Detection and Response (MDR) is a subset of MSSP that focuses on endpoint detection and response, network behavioral analysis, and other next-generation capabilities.

What are the benefits of managed security services?

Managed security services lower the costs of in-house security efforts, both in terms of technology purchases and IT labor. It also gives organizations access to a higher level of expertise and updated information on evolving security threats.

What’s the difference between an MSSP and an MSP?

An MSP can be any provider that remotely manages an IT service or services of any kind for clients. In contrast, MSSPs provide only security services to their clients.

How much do managed security services cost?

Costs can vary dramatically depending on the size of the organization and the comprehensiveness of the services offered. Pricing can range from $35/user/month to hundreds of dollars per user, per month.