The start of the MSS journey
Craig explains that his company’s transition to managed security services was born out of necessity. Originally operating as an Internet Service Provider (ISP), the company realized that traditional support was no longer sufficient to meet the growing demands of its customers. ‘We had a lot of our engineers on the phone with customers who couldn’t solve problems fast enough. We knew we could do better,’ says Craig. The introduction of MSS allowed the company to gain more control over the services provided. This meant that issues could be resolved faster and overall service quality improved.
Structure and growth
A decisive step in the development was the structuring of the team into typical 1st, 2nd and 3rd line support levels. In addition, a Proactive Security Monitoring and a Proactive Security Team were established. These teams act not only as support, but also as consultants and architects for security solutions. Since Craig joined the company, the team has grown significantly. From the original 15 employees, the company has grown to over 60, with almost half of the company made up of security and support staff.
Important pillars of the managed security portfolio
For IT service providers who want to offer MSS, it is crucial to evaluate and optimize their customers’ existing security measures. Craig emphasizes that a basic security review is necessary to identify and target risks. His company relies on proven partners such as Sophos and MIMECAS for email filtering and endpoint security. Another important point is the 24/7 provision of security services to offer customers round-the-clock protection. This relieves the burden on customers’ internal teams and ensures continuous monitoring and fast response times in the event of an emergency.
The road to success
The success of MSS relies heavily on close collaboration with customers. Craig explains that it is important to take a step-by-step approach and support the customer at every stage. This includes a roadmap that ranges from day one support to the introduction of further security services in the following months. Standards and certifications such as ISO 9001 and ISO 270001 also play a major role here. These help to standardize processes and ensure that new services are introduced and implemented correctly.
A look into the future
A look into the future shows that new technologies such as artificial intelligence (AI) will play an important role in the further development of MSS. Craig emphasizes that it is important to work closely with vendors to identify new developments early and integrate them into your portfolio. However, the introduction of new services requires careful planning and training of teams to ensure that customers continue to receive the best possible security solutions.