It's a big math problem. Simply put, most MSPs can't afford to build their own security operations centers (SOCs). Amid that reality, MSPs have a growing list of third-party SOC providers with whom they can potentially partner.
The latest example is Arctic Wolf Networks, which now offers SOC as a service to MSPs. The service, called AWN CyberSOC, includes security engineer support; incident response and compliance support; and fixed monthly pricing, the company says. That fixed price includes the following services:
- Managed detection and response (MDR)
- SIEM replacement
- Regulatory compliance support
- Behavioral analytics
- 24×7 Real time alerting
- Unlimited log analysis with machine learning
- Regular vulnerability scans
Nick Schneider, head of sales at Arctic Wolf, is driving the MSP partner engagement push. True believers include Chris Pace, CEO at Centre Technologies, an MSP that has embraced the service, according to the news announcement.
SOC Outsourcing: More Options for MSPs
Amid the cybersecurity boom, multiple companies are moving into the SOC market for MSPs. Additional providers and potential partners to know include:
- Carvir, which has relationships with MSPs that support 2,000 end-user businesses;
- ChannelSOC, which surfaced at the CompTIA ChannelCon 2017 conference earlier this month;
- Continuum, which is beta testing a SOC service for MSPs now;
- CyberBit, which offers a SOC to MSSP partners like MNS Group;
- NetEnrich, which manages cybersecurity for a range of partners;
- Trusted Metrics offers a home-grown Elastic SOC to partners; and
- dozens of additional companies are in the market.
- Tell Me More: Which SOC providers to MSPs did I miss? Email me your thoughts: [email protected].
MSPs: Build Your Own SOC?
In some cases, MSSPs are spending big dollars to build SOCs on their own. But this isn't for the faint of heart. Consider these quick factoids:
- BlueteamGlobal, a cybersecurity services startup, recently raised $125 million to build out its MSSP and SOC practices.
- Fishtech Group, led by CEO Gary Fish, is spending $8 million to build a cyber security operations center in Missouri.
Meanwhile, it's getting more difficult to build out a cybersecurity operations team, according to ESG research. Among the reasons: The cybersecurity skills shortage is making it difficult to find analytics and operations talent, ESG asserts. Not by coincidence, most mainstream MSPs are struggling to find cybersecurity talent, a recent Kaspersky Lab research report finds.
Amid those financial and talent realities, we firmly believe most MSPs and many MSSPs will need to partner up for SOC services.
Choosing a SOC Partner: Big Challenge
Alas, SOC providers come in various shapes, sizes, technology, business and financial. It's some what akin to the car industry. Tesla, Lamborghini and Chevy are all car makers -- but you'd never lump them together in a head-to-head product comparison.
The situation is equally challenging in the SOC market, where numerous players say they can assist MSPs with their cybersecurity needs. But you really need to get under the hood -- studying a SOC provider's business model, funding, current customer base, track record and commitment to innovation -- before signing on the dotted line for such a service.