Another problem: turnover.
'Our critical tool has left the building'
Finding, hiring and training a cybersecurity professional is exhausting and expensive, and because these professionals in such high demand and can command incredible salaries, they can leave you in the lurch if they get a better offer at another company, Stevens says.
"If the person you hired six months ago gets a better offer and leaves, then you're really in trouble. Companies do not want to spend all that time and money hiring and training someone on a multimillion dollar tool only to have them leave. It takes trained experts to understand not only the technology, but the human aspect of this, and we've found that the only way to do this at scale, efficiently and cost-effectively is through offering it as a managed service," Stevens says.
MSSPs as a differentiator
The MSSP model can also be a competitive differentiator for companies that can point to their MSSP as proof that they're actively involved in security best practices with specialists, says Stevens. It also means threats can often be addressed before clients even know an incident is happening.
"Because we're working with economies of scale, if we see a breach, or we see a new piece of malware coming out that's directed at one client, we can extrapolate to other similar clients and go ahead and patch or further secure them before they even know or realize it could be a threat. I can quickly apply that same fix across 90 customers at once; it's really proactive," Stevens says.
Small business security
It's much more cost-effective, too, especially for smaller organizations that might not have the budget for high-priced security talent or expensive on premise tools, Stevens says, not to mention that attacks that are simply a nuisance for large enterprise networks can be downright crippling for SMBs or startups.
"Untrained or unprepared companies that are smaller and on a tighter budget are especially vulnerable. What's nuisanceware for a major enterprise can be really debilitating for SMBs -- we saw it with variants of Cryptolocker. But because we could see it happen across our client networks, we took care of it for everyone. That kind of scale is something you can't get from an individual practitioner," Stevens says.
Smaller, tier 2 and tier 3 network providers are especially vulnerable to attacks; much more so than their larger competition, says Dave Larson, COO, Corero Network Security.
"The floods, the inbound traffic that's not necessarily causing a breach and might be brushed off as an annoyance by larger enterprises -- that's devastating for smaller companies. That can push them completely out of business," Larson says. But an MSSP model is a great option for companies for which individual security talent is out of reach because of time, vulnerability profile or budget concerns, he says.
Sign up for Computerworld eNewsletters.