One of the biggest topics among MSSP and MSP owners at this time of year as during strategic planning is pricing. How do you price managed security services? Are you using a per device plan? A per user plan with a device allowance? Are you pricing by ingestion? By alerts? What’s in your standard bundle? What are you adding on?There are so many different ways to set pricing for managed security services, and best practices are always evolving. Add to that the recent economic environment. We have recently come out of a pandemic that disrupted normal economic patterns. Inflation has been high. Interest rates are high. The labor market has been unstable. There’s plenty of uncertainty as we head into 2024.Joe Morin, CEO of CyFlare, an MSSP 250 company, has recently been on a vision quest to figure out the right formula for pricing MSSP services, and it’s a continuing journey. Morin recently shared some of his thoughts with MSSP Alert during a December webcast, MSSP Pricing and Packaging Strategies for 2024. You can watch the webcast on-demand here.In addition, there are plenty of add on services as well that you could offer your customers to differentiate your services and provide your end-customers with greater value. They include the following:When you are doing the actual pricing of your bundle of services, no one size fits all, according to Morin. For instance, educational end customers have thousands of students who don’t really fit per user pricing the same way staff members would. And technology startup companies may just have 10 users but a massive infrastructure footprint on AWS that they are looking for you to monitor and protect.

MSSP Pricing and Packaging: Key Considerations
Meanwhile, here are some of the highlights.What are the core services MSSPs need to offer? At a basic level MSSPs should be offering the following core services:- Assessments
- SIEM/mXDR and SOC
- mEDR
- Vulnerability scanning and reporting
- Penetration testing
- Email security
- Web security
- Patch management
- vCISO services
- Incident response
- DLP (data loss prevention)
- Identity access management / privilege access management
- Cloud detection and response
- Zero trust network access / zero trust endpoint




