Advertisement

Security News

10 Tips For Choosing The Best MSSP For Your Company

Michael Novinson

From probing the MSSP’s reporting and quality management process to using a third-party adviser to benchmark competing MSSPs on price and scope, here are 10 things customers should consider when selecting an MSSP.

Verify Reporting And Quality Management Process Aligns With Company Needs

Customers need to get into the details of the quality management process with prospective MSSPs to figure out how often independent peer review takes place and how they can ensure incident tickets are complete, accurate and provide good recommendations, according to Chris Crevits, U.S. cybersecurity managed services leader and principal at Ernst & Young (EY).

Crevits said customers should at a minimum expect a peer review before a deliverable is sent out, with senior resources conducting monthly or quarterly reviews of the work that’s being done. The review should go beyond spell check and be analytical, Crevits said, looking for false positives, areas of possible disconnect, actionable and clear information, and data that can be easily turned into action.

Reporting is a big part of any managed service since it describes the value the MSSP is providing as well as insight they’ve obtained from the customer’s environment, Crevits said. Customers should seek custom reporting when possible to make it easier for CISOs to leverage MSSP data in their reports and ensure that descriptions of what’s happening in specific business units are put in the language of customers.

 
Advertisement
Advertisement
Sponsored Post
Advertisement
Advertisement