The Security Services Life Cycle and Finding a Trusted Security Adviser
Starting Point: Finding a Trusted Security Adviser
As security threats continue to advance, the security knowledge gap widens, leaving organizations struggling to keep pace. This creates a severe disadvantage, considering that just one security breach could offset years of revenue or, even worse, serve as a company‐ending event.
More often, organizations are seeking trusted security advisers to help fill that gap and leverage their knowledge and resources to reduce the overall business risk.
At its core, security services is wide ranging and designed to identify, correct and mitigate known or unknown security gaps and risks through assessments and incident response. These services, while transactional in nature, provide the foundation for a trusted security adviser.
The security services approach needs to be flexible and must be designed with your best interest to provide maximum value for your budget. Because budgets vary as much as the size and security maturity of any organization, you’ll want to find the most customized approach that will yield the most value for you.
Your trusted adviser should provide services such as a compromise assessment, which is a technology‐driven review that identifies evidence of current or historical malicious activity – security breaches, for example. These assessments can then be further augmented with overall health assessments of your security posture. Organizations are hesitant to combine networks if there’s any uncertainty as to whether the environments are clean, making the compromise assessment technique especially popular with mergers and acquisitions.
As organizations leverage security services, they often naturally require more assistance. As security programs mature, they require more help, so their overall business risks remain consistent as they scale as a company. Managed services provide the key answer to minimizing business risk during this process.
Much like security services, managed services come in many shapes and sizes, from managing devices to monitoring the environment for security threats. While customization becomes more difficult for managed services due to scaling the service itself, various tiers can be applied to best accommodate specific requirements.
Managed Security Services Provider
To take a closer look, let’s use the example of a Managed Security Services Provider (MSSP). A base offering is one that installs fully managed standard security tools and provides alerts based on security signatures, indicating a potential security incident.
The next level up would be to introduce a threat hunting service on top of the base MSSP offering. Threat hunting is the act of proactively collecting data from environments and analyzing the information to identify anomalous activity. This addition is valuable if you’re looking for more than just a reactive security program that’s solely dependent on security alerts.
Security Product Services
As part of security and managed services, product opportunities will naturally arise from recommendations that surface during the services. So, be sure to look to your security adviser for input on which products are best to solve any identified gaps.
A typical example of this might occur during a compromise assessment when the services team identifies visibility gaps in your cloud environment. They are not able to monitor their cloud environments as they would the rest of their enterprise network. The team can recommend leveraging Gigamon GigaSECURE® technology to provide network data to Gigamon Insight solution. This expands the existing MSSP service, so you’ll see a more secure environment and reduced business risk.
Tying It Together
Each phase of the security services life cycle plays off of each other. There is no one correct starting point. It’s irrelevant whether you begin with security services, managed services or product service. What matters most is identifying security gaps or pain points and getting a menu of readily available services and strategies from your trusted adviser.