Managed Security Service Providers
Best Managed Security Service Providers include:
Accenture Managed Security, Cofense Managed PDR (Phishing Defense Center), Kaspersky Cybersecurity Services, BlackBerry Unified Endpoint Security (UES) Implementation by ThreatZERO, AT&T Managed Threat Detection and Response, Rapid7 Managed Security Services (Rapid7 MDR), Cisco Managed Security Services, IBM Managed Security Services, Mandiant Expertise On Demand, and Accutive Managed Security Services.
Cofense Managed PDR (formerly Phishing Defense Center, or PDC) is a security service designed to relieve security operators of the repetitive tasks needed to qualify, investigate, and document alerts. With it the user can focus on responding to verified threats, instead of spending…
Masergy provides managed communications and contact center (powered by Cisco Webex), managed SD-WAN (powered by Fortinet), as well as managed security services.
Clear Infosec is the Information Security subsidiary of Ana-Data Consulting Inc. Clear Infosec aims to create value for clients by identifying, evaluating, designing, controls and technology service to help mitigate risks. The vendor states their belief that secure business processes…
IBM Managed Security Services include firewall management, intelligent log on cloud, intrusion detection and breach management, security analytics, unified threat management, and endpoint security services.
Cisco Security Services is a collection of available services including Active Threat Analytics as well as consultatory incident response services, strategy, risk and vulnerability management.
Advanced's certified experts deliver accredited managed services, coupled with technology from chosen partners, to support maintenance of a strong security posture, desktop to Data Centre and into the Cloud. The Advanced portfolio of modular tiered service offerings for Cyber Security…
CYREBRO was founded in 2012 as CyberHat to help companies take cyber protection to new and unprecedented heights. Now CYREBRO, the vendor states their mission is to completely revolutionize cybersecurity operations by putting the power of a full-fledged Security Operations Center…
Accenture provides managed security services, managed identity, and managed application security.
Kaspersky Labs' managed cybersecurity services include vulnerability asessment, threat hunting and threat intelligence services, and managed incident response.
Cisco Managed Security Services focuses on advanced threat and anomaly detection, as well as providing updated threat intelligence.
BT offers Managed Security Services including firewall and DDoS, Cloud, email and web security, as well as providing advanced cyber threat detection services.
Recognizing the increasing number of cyber threats, Delta Risk was founded in October 2007 by a small cadre of former U.S. military operations experts who had a vision of helping private sector and government organizations build advanced cyber defense and risk management capabilities.…
CenturyLink® Managed Firewall Service delivers 24/7 firewall administration and proactive response to attacks for their own hardware, or the user's own. All security services are supported by certified security professionals. • Firewall options: Options include delivery inside the…
Sirius Computer Solutions offers a wide range of IT professional services, including infrastructure design and implementation, security testing and consulting, cloud migration and related consulting, as well as financial services. In addition to these services Sirius also provides…
The Herjavec Group (HG) offers Managed Security Services.
Stefanini provides managed security services designed to support security posture and security architecture. Services encompass consultation, design and implementation of security products, Security Operations Center (SOC), vulnerability management, endpoint security, network security,…
DXC Technologies provides managed security services, including vulnerability and threat location and remediation, incident response, identity and access management, infrastructure and endpoint security, cloud security, and data privacy.
Booz Allen Managed Threat Services (MTS) is a managed security service, combining threat intelligence with managed detection, 24/7 threat detection and monitoring, and active support from Booz Allen Hamilton analysts.
Cygilant headquartered in Boston offers their Security-as-a-Service, providing threat monitoring and incident response, and also unified vulnerability management, available as managed services.
Verizon provides managed security services, including DDoS protection, web security gateway, data breach and threat detection, as well as intrusion or incident response.
Trustwave Managed Security Services include managed threat detection and response, as well as proactive threat hunting, endpoint and application security, as well as compliance support.
NTT Communications offers managed security services (MSS).
Cipher is a global cybersecurity company that provides security and GRC services to businesses small and large. The vendor states that industry leaders trust them to handle services encompassing vulnerability scans, ethical hacking, GRC consulting, and full managed security services.…
DataBank offers comprehensive managed security services to augment hybrid IT infrastructure, with a five-layer defense approach and a staff of security engineers and a CISO for every solution. The vendor states their solution keeps the IT environment safe, secure and compliant…
Proficio is a managed security services provider (MSSP) delivering 24/7 security monitoring and managed detection and response (MDR) services. Proficio has Security Operations Centers (SOCs) in San Diego, Singapore, and Barcelona where their security teams monitor security events,…
What are Managed Security Service Providers (MSSPs)?
Managed security service providers, also known as MSSPs, provide cybersecurity outsourcing options covering a range of security needs. These services may include patching and vulnerability management and reporting, threat intelligence, incident response, and other services. Additionally, MSSPs provide their own expertise and knowledge on emerging threats and security developments.
MSSPs can use either their own security technology or deliver 3rd party technology to their clients and end-users. The security software itself is managed remotely by the provider. This outsourcing reduces or eliminates the client business’s need for in-house hardware, IT resources, or knowledge experts. Managed security service providers also offer more specialized expertise than many smaller in-house operations would be able to source themselves.
MSSPs vs. MSPs
Managed Security Service Providers (MSSPs) are a subset of Managed Service Providers (MSPs). MSPs encompass a much wider range of IT functions and operations, including managing cloud infrastructure, cloud computing, and other resource or operationally-intensive functions. In contrast, managed security service providers specialize in removing digital security burdens from their clients’ IT or operations teams. In order to focus on the unique expertise and resources required in digital security, there is very little overlap between managed security service providers and broader MSPs.
Managed Security Service Areas
Most security capabilities can be managed in some capacity by a third-party provider. Some of the most commonly outsourced security services include:
Firewalls, including network or web application firewalls
Virtual Private Networks (VPN)
Managed security service providers give clients the added benefit of various services around the core functionalities. These services and support areas include:
Training and education, particularly training against behavioral threats like phishing
Managed security service provider comparison
When comparing managed security service providers, consider these factors:
Ease of implementation: The largest burden on end-users when working with a managed security provider is the initial implementation process. Consider how intensive a process implementation is, including necessary agent installations on devices or networks. For more complex organizations with a wider range of devices, the implementation may also be a more complex process.
Point Solution vs. Security Suite: Some MSSPs focus on delivering specific security services, such as firewalls or identity management. Others provide comprehensive security packages, in the vein of Unified Threat Management offerings. While UTM-level services can provide all-in-one security services, some organizations may only need certain security services, or may just need to supplement existing security capabilities in specific areas.
Additional services offered: Consider what non-capability services that each MSSP offers. Depending on the organization, additional training around behavioral security may be particularly beneficial, while others with a greater focus or protecting sensitive data may place greater emphasis on white glove policy development.
Managed security service providers price their offerings on a subscription basis, usually monthly. Some providers give a flat fee company-wide, while others price their services per user. Pricing varies dramatically depending on the range of security services offered, from $20/user/month to hundreds of dollars per user, per month.