Managed Security Services as a business asset
Do Companies need to change Priorities and Strategies in order to defend the business from new Cyber Attacks?
“At the moment the most strategic activity is to monitor and to respond to eventual attacks.” – said Roberto Mignemi, CEO of Cybertech, in the interview with Data Manager.
“Managed Security Services are essential especially for companies that don’t have advanced defense systems in place. We created a ”tailor-made” Managed Security Services offering in order to satisfy all of our clients, depending on the number of events that need to be managed.
This approach makes our Managed Security Services offering accessible to all companies. Building up on the monitoring services, offered in collaboration with the Engineering Group, our offering includes a series of closely related services: vulnerability assessment, SIEM, incident response and our SOC (Security Operation Center) for a 24/7 perimeter monitoring.”
How to change the approach? The first step is to work together with the client in order to map the actual company security status and the surface that is exposed to threats.
“We are not talking about setting up projects worth millions, the ones that solve everything at once, instead we recommend a reference framework adaptable to changes with defined priorities and countermeasures and actionable resolution or mitigation program in case of detected vulnerabilities.
This is the approach – suggests Mignemi – that everyone should adopt in order to manage security issues, because it is impossible to do so without being aware of the risks involved. The risk analysis allows us to focus on the areas at greater risk, making it easier to define a remediation and monitoring plan.
Rational and systemic management of security should be a starting point in order to foresee and then implement further actions in medium and long term. Often, however, this structured approach isn’t yet very clear to most companies.” – observes Mignemi.
“Most companies tend to addopt the “reactive” method, trying to solve the single problem while ignoring many other vulnerabilities. Sensitivity and understanding of the security issues vary depending on the market maturity and on the type of company. The banking industry is well aware of the security matters for at least twenty years.” – explains Mignemi.
The situation is yet different for SMBs, where the problem is rarely addressed effectively.
While the Industrial world is slowly becoming more aware of its vulnerabilities and of the disastrous consequences of a an eventual stop in production. We created a “tailor made” Managed Security Services offering to satisfy the needs of our clients, independently of their degree of maturity or the type of industry.»