Interviews - News - Analysis: For successful growth with Managed Security Services

Appetite for risk.

Jason Fry, who has already sold an IT company in the UK and has been successful in the UK market with his start-up adnitor since 2019, talks about the managed security aspects that are important to him. Jason says, among other things, "we understand that the traditional way of supporting and managing IT needs to change". And what are the most important security services for him and what makes them successful? What is the "customer experience level" that is important to him as a supplement to the technical SLA?

The changing IT landscape

Traditionally, companies invested in IT systems that were then operated in maintenance mode for years. Those days are over. With the advent of cloud technologies, the use of IT has changed fundamentally. IT systems are now constantly changing, which requires a new approach to IT management and support. Olaf and Jason from Adnitor emphasize that the success of managed services lies in accepting this constant change and offering appropriate services.

Customized services instead of one-size-fits-all solutions

In the past, many managed service providers (MSPs) tried to force their customers into prefabricated packages. Nowadays, however, this strategy is reaching its limits. The diversity of customer needs requires customized solutions. Adnitor recognizes that it is important to be flexible and customize services to meet the specific needs of each client. This includes not only a wide range of core services, but also thorough internal documentation and processes to maintain an overview and ensure the quality of services.

Beyond firewall and antivirus

Basic protection through firewalls and antivirus software is now a matter of course. But more far-reaching measures are needed to counter modern threats. Managed Detection and Response (MDR) has proven to be a game changer. Adnitor relies on partnerships with established providers such as Sophos to offer its customers high-quality security solutions without having to operate a costly Security Operations Center (SOC) themselves. Complementary services such as backup, replication, risk management and cyber resilience planning round off the portfolio and help customers to better understand and manage their risks.

The cooperative approach as a success factor

A new, promising approach is co-managed IT, where customers take responsibility for parts of their IT and, in particular, their IT security. Adnitor’s approach is to talk not only about technology, but also about risk. By analyzing and understanding their customers’ specific business risks, they can offer targeted and relevant security solutions. This approach builds customer trust and leads to successful collaboration.

Challenges and solutions

The biggest challenge for MSPs is managing the multitude of security technologies and providers and integrating them into a coherent solution for the customer. Adnitor decided against having its own SOC and instead relied on external MDR offerings. This decision has proven to be cost-effective and efficient. However, continuously adapting to new threats and integrating different technologies remains an ongoing task.

Focus on customer experience instead of just SLAs

Another key to success is focusing on customer experience (XLA) rather than just meeting service level agreements (SLAs). Adnitor is committed to working closely with customers to measure and ensure their satisfaction and actual business results. This customer-centric approach helps to not only meet but exceed expectations and build long-term partnerships.

'I believe that the co-managed approach is a new approach that resonates with many customers because they recognize that they need to take some responsibility for their IT journey and in particular for their IT security.'

MSP Journey · Managed Security Services · Sophos & Olaf Kaiser · Portraitbild Jason Fry
Jason Fry
Adnitor
Olaf Kaiser:

Please explain your statement 'We know that the traditional way of supporting and managing IT needs to change'.

Jason Fry:

One of the reasons for this statement is that we have recognized that the way IT is used in a company has changed massively. In the past, a company would invest in an IT system and then let it run in maintenance mode for three, five or ten years. And then they had to invest a lot of money to replace the system. We believe that has changed now because they are taking advantage of cloud technologies. A lot of the IT is no longer on-premise, it's constantly changing, and that requires a slightly different approach. The IT services we offer as part of co-management or outsourcing take into account that this is now the new norm and we have to accept this constant change.

Olaf Kaiser:

Tell us about the development of your managed services. Do you have predefined packages or how do you adapt to your customer's circumstances?

Jason Fry:

For many years at the MSP I worked at previously, and I know many other MSPs did the same, we tried to put our clients into pre-defined packages or technology bundles to make it easier for us to deliver these services and meet the SLAs we agreed with our clients.

However, in the face of constant change, it is becoming increasingly difficult to bundle all these elements together. We have therefore realized that one size does not fit all and two or three sizes do not fit all. That's why we need to tailor our range of services to our customers a little more than before. There are still core offers and prices for certain services that we offer, but we have had to become a bit more flexible because we naturally have a different contract and a different scope of services for almost every customer. But we respond to that with really good internal documentation and processes and information about each customer so that we understand what they have and what we're delivering to them. And as things change in their world, which is regularly the case, companies have to adapt to a variety of economic, social, environmental and political pressures that affect their business.

So it's an ongoing dialog that we have with them, not just once a quarter or once a year. It is an ongoing dialog.

Olaf Kaiser:

Nowadays, many MSPs say that a firewall and virus protection are no longer enough when it comes to security. Do you offer your customers certain mandatory services as part of your Adnitor portfolio?

Jason Fry:

Any company that does not have a firewall or anti-virus protection for endpoints is not taking its business seriously. This has been a given for some time, but these things don't cover all the risks that exist today. What has proved to be a game changer for us is the MDR service. We work with some great providers, one of which is Sophos. They have a very good MDR offering that we sell on to our customers, because it would have been very costly to integrate a SOC or SIEM offering into our packages for our customers.

So having a managed offering from a very well-known security provider is a great thing that we can easily offer to our customers. We also offer a range of other complementary services. We offer backup, replication and recovery. We also offer risk management and cyber resilience planning. We try to talk to our customers about their ability to deal with a cyber incident and make sure they are aware of the risks.

Olaf Kaiser:

Looking ahead to the journey with Adnitor from 2019, what are the main keys to success in this area of Managed Services or specifically Managed Security Services?

Jason Fry:

Well, I think the co-managed approach is a fairly new approach that a lot of customers are warming up to because they realize that they need to take some of the responsibility for their own IT and especially for their IT security. Our successful approach to IT security is to talk about risks and not just technologies. Because as soon as you start talking about all the technologies, customers think you're trying to sell them something or scare them into buying something. But for us, it's been good to take a step back and try to understand their business a little better. What are the risks for the company? Is it financial risk? Is it the risk of losing data? Is it the risk of their data becoming public? Would a business failure be the biggest risk to the company? By trying to understand the maturity level of the business in terms of different aspects of cyber incident response, we show that we care about their business and are offering them the right technologies and services, rather than trying to sell them something all the time. That has been a great success for us.

Olaf Kaiser:

What were the biggest obstacles you faced and what solutions did you develop?

Jason Fry:

I think the biggest challenge for us was managing the different security technologies and vendors and bringing them together into a solution for the customer that met their needs. The more vendors we had and the more technologies we used, the bigger the challenge. Another question we faced was whether we should set up our own Security Operation Center and staff and manage it around the clock. We had to figure out whether or not that would be cost effective for us. In the end, we decided against it. Fortunately, the Sophos MDR offering came along and filled a big gap for us. The biggest hurdles were managing all these different security technologies and their feeds, as well as dealing with all the new threats and potential threats that were emerging in the landscape.

Olaf Kaiser:

You talked about the customer experience level and the fact that you are geared towards this rather than a service level agreement. What is your approach to this XLA?

Jason Fry:

At Adnitor, we've tried to really focus on the customer experience and results. SLAs are really important. They help us and the customer make sure that we do what we need to do, in the time we need to do it, and that we respond properly. But we've added another layer, which is experience. We use it as a kind of benchmark to ensure that we give our customers what they want and need. So an XLA is an agreement on the experience level. So we sit down with the customer and agree a certain level of happiness and satisfaction. Our customers have certain expectations of the services we provide. And we want to make sure that we exceed those expectations. So the experience level is about continually engaging with our clients to ensure that the services and projects we deliver not only achieve the desired results, but also have business value for our clients.

MSP Journey · Managed Security Services · Sophos & Olaf Kaiser · Portraitbild Jason Fry

Profile

Businesses are complex organisms that are constantly adapting to meet the demands of modern society; they need to respond to change and pressure from various quarters, e.g. competition, legislation, social and environmental issues. The business systems on which the company is based and the way in which these systems are managed must be flexible and adaptable.
Jason Fry
Managing Director
Adnitor
9-13 St. Andrew Street
London, EC4A 3AF

Related articles

We want control.

When we have more control over things, and it sounds a bit strange that we want to have that control, we do it because it allows us to move the infrastructures that are a problem. For us, it was all about making sure that the people with us who provide the technology and the service cover the issue as quickly as possible and lose less time.