How To Choose The Right MSSP
Meet Eric Eric Devansky Director of Global Security Services 15 Years of experience in the Cyber Security industry CISSP Palo Alto CNSE VMWare VCP Connect with me: @TruShield https://www.linkedin.com/in/ericdevansky edevansky@trushieldinc.com
Meet TruShield We are a global cyber security company based in the Washington DC metro area. Provider of the following high-quality, concierge security services: Managed Security Services Risk Assessment Services Penetration Testing Vulnerability Assessments Threat Protection Incident Management Security Consulting Security Architecture
What is an MSSP?
Why Do You Need an MSSP? Security Benefits Access to high-quality experts Continuous Threat Intelligence Budgetary Benefits No need to hire additional people A 24/7 staff would be required
The Right MSSP What is the Right MSSP? One that can meet the current and future needs of your organization, on time and on budget.
The Decision Process Self-Evaluation Identify Providers Evaluate Providers Select Provider
Self-Evaluation Needs Analysis What is your objective? What drives you? Internal Assessment Timeline Requirements Do you have a specific deadline you need to meet? Budgetary Limitations How much can you afford?
Self-Evaluation The Key is Prioritize!
Identify Providers Industry Research Gartner & Forrester Get a good start and cut down on time Peer Group Feedback Talk to other companies in your industry who have already hired an MSSP Selecting A Pool We recommend 3-5 of your top choices
Evaluate Providers Corporate Profile Approach Threat Analytics Specialization Ability to Execute Deployment Team Makeup Other Services Cookie Cutter vs. Customer Centric Technical Architecture Scalability 24/7 vs. On Call Technologies Supported Cost/Value Ratio
Evaluate Providers Corporate Profile Company Size Experience in the field Experience with similar companies Get References! Location Technology Partnerships
Evaluate Providers Cost/Value Ratio Consider Scalability You want a company that understands budget constraints
Select Provider Implement Communication is Key, both internally and with the provider Plan ahead Operate and Maintain The early days are the most important, be on high alert! Continuously look for ways to improve Scale Versatility Constantly reexamine bandwidth and capacity capabilities
TruShield vs. Other MSSPs Continuous Security Monitoring Feature Monitors, collects, and stores event logs Custom web-based portal with direct client access Unified Threat Management aka Next Generation Firewall Predictable Fixed Cost Helps attain a variety of compliances including PCI, SOX, FISMA, HIPAA, ISO Flexible Service Delivery 24/7/365 Unlimited Analysis and Incident Response Custom reports on any schedule (dailyannually) Bring Your Own SIEM TruShield Other MSSPs
TruShield vs. Other MSSPs Cont d Continuous Security Monitoring Feature Unified Security Management Platform IDS/IPS Custom Endpoint Security including Real- Time Management Web Gateway Mail Gateway (Includes quarantine, reverse malware, 24/7 incident response, and continuous configuration) Multi-Factor Authentication Stores logs off-site in forensically sound, SSAE16 certified facility Security Threat Intelligence and Expertise Included TruShield Other MSSPs
TruShield vs. Other MSSPs Cont d Continuous Security Monitoring Feature Advanced digital forensic/reverse malware engineering Built-in Disaster Recovery and Business Continuity Planning Periodic application of patches, security updates, upgrades, hotfixes, and firmware Require additional infrastructure (server, network devices, storage, etc.) TruShield Other MSSPs
Q & A
Thank You! 877.583.2841 www.trushieldinc.com