Interviews - News - Analysis: For successful growth with Managed Security Services

100% MSP or goodbye

There is a 'game changer moment' in the Riesenbeck IT success story. The clear statement to customers that you are going down our Managed Service path or we can no longer work together.

Markus Riesenbeck, Managing Director of Riesenbeck IT, describes the decision to focus entirely on managed services as crucial to the company’s success. “We have introduced our service concept to all existing customers because we are convinced that this is the optimal way to provide customers with reasonable security in the modern age,” explains Riesenbeck. This holistic approach makes it possible to react flexibly to current challenges and continuously improve the security infrastructure.

The pillars of security

Riesenbeck IT’s security concept is based on four central pillars: endpoints, servers, network and firewall. These components form the basis for protecting the IT infrastructure. The offering is supplemented by optional services such as darknet monitoring and managed email, which can be booked according to the customer’s needs. Tailor-made solutions are particularly important in the healthcare sector, where highly sensitive data is handled. This is where the telematics infrastructure comes into play, which requires special networks and corresponding protective measures.

Flexibility through package solutions

Riesenbeck-IT offers its customers three service packages: Basic, Standard and Premium. Even the basic package includes a Security Operations Center (SOC) solution that forwards alarm messages to an external SOPHOS service center, where forensic experts analyze the messages. “We can’t do that with our company size,” says Markus. The standard package also includes flat-rate services, while the premium package offers high-quality hardware and redundancies for increased reliability.

Employees as the key to success

A key factor in the success of managed services is the motivation and commitment of the employees. Markus emphasizes how important it is to continuously train the team and involve them in decision-making processes. “For us, the most important realization was that we set aside one day a week to work on the company and actively engage with new services and concepts.” This continuous training and the opportunity to contribute their own ideas significantly increase employee motivation and commitment.

'Our concept is also based on the pillars of Basic, Standard and Premium. The basic level includes everything that we consider mandatory and therefore also most of the security services. It's worth noting that even the smallest package includes a SOC solution. For us, this means that alarm messages are not processed by our technicians, but are sent to an expert team from Sophos.'

MSP Journey · Managed Security Services · Sophos & Olaf Kaiser · Portraitbild Markus Riesenbeck
Markus Riesenbeck
Riesenbeck IT Solutions e. K.
Olaf Kaiser:

Looking at your journey to date, what has been the most important strategic decision you have made in your journey so far? What has had the most positive effect on your development?

Markus Riesenbeck:

Of course, it was a longer process, but in my opinion, the biggest breakthrough or game changer was when we decided to focus 100% on managed services. Ultimately, we communicated our service concept more clearly to all existing customers because we are 100% convinced that this is the best way to offer reasonable security in the modern age and prepare them for current challenges. From our perspective, this was the most crucial factor that provided the most momentum, as it gave us more opportunities, allowed us to fully concentrate on it, and had the greatest impact on the team.

Olaf Kaiser:

If I were to come into contact with you as an ophthalmologist, Dr. Kaiser, what would you provide me with today?

Markus Riesenbeck:

When we talk to the customer, we focus less on individual products and instead illustrate that we function as an external IT department, handling all the issues that arise in their practice. Initially, we concentrate on the core components of a customer’s system: endpoints, servers, network, and firewall. These four pillars are essential, and without them, we cannot proceed. These are our core offerings that customers are required to include. Additionally, there are optional services such as darknet monitoring or managed email that customers can choose to add.

Olaf Kaiser:

You now have an industry focus on doctors. Are there things that you have integrated into these security topics as experts for the industry?

Markus Riesenbeck:

We handle very sensitive data. Unfortunately, the highest protection class according to the European General Data Protection Regulation is not always fully implemented in the healthcare sector. We have adapted our concepts to address this, focusing on the healthcare sector, including telematics infrastructure. This involves special networks that require particular care, such as network separation, and working with medical technology manufacturers to determine who should have remote maintenance access.

Olaf Kaiser:

Have you embedded the security issues in a workplace package that also includes monitoring and patching and things like that? And if my medical practice is now considering what it should take from Riesenbeck-IT, because sometimes there is also this construct of the three pillars, is that also the case with you?

Markus Riesenbeck:

Exactly. We also offer three service levels: Basic, Standard, and Premium. Basic includes everything we consider essential, covering most security services. Notably, even the smallest package includes a SOC solution. This means that alarm messages are not handled by our technicians but are instead sent to a service center, in this case, Sophos. There, a forensic expert reviews the reports and conducts their own assessment based on AI evidence, operating around the clock. We lack the resources to provide this level of continuous monitoring ourselves.

Another key aspect is that we once received a message indicating that Firefox.exe was recognized as a threat. We couldn't determine if its size should be 200 or 300 KB, and this is not within our core expertise. Acquiring the necessary additional know-how would not have been economically viable for our company size. Since we believe that round-the-clock security requires such a service, we include it in the Basic package.

The Standard package usually offers a flat-rate tariff, including services. Premium typically involves higher-quality hardware at the workplace or, for servers, additional redundancies for increased reliability.

Olaf Kaiser:

You've just been with your employees. How did it work out that your technical employees also have such a high level of managed service motivation?

Markus Riesenbeck:

Yes, one of our biggest challenges was getting the team on board, especially when not everyone is immediately excited about new tools. For instance, when I returned from a trade fair and eagerly presented six new tools, not everyone was thrilled, especially when they hadn't yet mastered the last six.

The key realization for us was to set aside one day a week—Friday—to focus on company development and engage with new services and concepts. This dedicated time allowed us to work together as a team. It was crucial that everyone had the opportunity to contribute ideas, shape concepts, and voice concerns. This inclusive approach helped motivate the team.

In the past, tasks like driving 200 kilometers to check if plug A was properly connected to socket B were necessary but not enjoyable. With the right tools, we can now handle such tasks more efficiently without spending hours on documentation.

Olaf Kaiser:

Let's take another look ahead. What do you see in store for your customers? And which security services will you integrate into one or all of these packages and where?

Markus Riesenbeck:

We have just launched our managed mail system and we will certainly continue to optimize it. And we are currently tackling the issue of password management and have evaluated various manufacturers.

MSP Journey · Managed Security Services · Sophos & Olaf Kaiser · Portraitbild Markus Riesenbeck

Profile

IT service that doctors trust. Riesenbeck IT has been developing innovative IT concepts for medical practices and medical care centers (MVZ) in Hamburg and northern Germany since 2004.
Markus Riesenbeck
Managing Director
Riesenbeck IT Solutions e. K.
Bramfelder Str. 121
22305 Hamburg

Related articles

We want control.

When we have more control over things, and it sounds a bit strange that we want to have that control, we do it because it allows us to move the infrastructures that are a problem. For us, it was all about making sure that the people with us who provide the technology and the service cover the issue as quickly as possible and lose less time.

Appetite for risk.

Jason Fry, who has already sold an IT company in the UK and has been successful in the UK market with his start-up adnitor since 2019, talks about the managed security aspects that are important to him. Jason says, among other things, "we understand that the traditional way of supporting and managing IT needs to change". And what are the most important security services for him and what makes them successful? What is the "customer experience level" that is important to him as a supplement to the technical SLA?