Small firms use SOC to combat menace of cyber attack
21st December 2018
Many smaller companies are now outsourcing their cyber security to dedicated service providers who are using a security operations centre (SOC) and advanced managed detection and response (MDR) technology. What is a SOC and how does it protect against the constant and rapidly growing risk of cyber attack?
UK business is under attack
Small businesses in the UK are the target of an estimated 65,000 attempted cyber attacks every day, according to new figures from specialist global insurer Hiscox. Every company must implement reliable cyber security measures. They must also prepare for the consequences of an almost inevitable cyber breach.
Security Operations Centre (SOC)
Gartner has confirmed that a security operations centre (SOC) combined with managed detection and response (MDR) technology provides the best cyber security platform for an SME organisation.
A SOC is an organisational hub of skilled team members and technology whose goal is to detect, prevent and respond to cyber security threats in as close to real time as possible. Effective cyber security requires continual awareness of the activity of people, processes and technology. A well organised SOC uses threat detection and monitoring technology to identify a possible cyber attack, determine the threat and if required, execute an immediate action to mitigate the risk to the organisation.
Managed Security Operations Centre
A managed security operations centre is an outsourced service delivered by a third-party solution provider on behalf of a client organisation. These companies are known as Managed Security Service Providers (MSSP).
A new breed of MSSP known as a Managed Detection Response (MDR) service providers has developed in the last few years. The MDR service provider builds on the benefits of a traditional managed SOC service with the addition of advanced MDR technology based on behavioural analysis and machine learning.
Now available for smaller organisations
MSSP services have until recently been relatively expensive and only afforded by the larger companies. The ability of an MSSP to deliver its services will usually rely on its partnership with specialist security application vendors such as Alien Vault, Carbon Black and Rapid 7. Many of these vendors are now using multi-tenanted, web services to enable rapid deployment and significantly reduce costs. The net result is that a few MSSP’s are now able to offer service packages with ‘subscription style’ prices as low as £30/user/month on an annual basis.
Why would you use a managed SOC service?
- Significant cost advantage with a reduction in manpower and spend on technology
- Immediate service delivery independent of delays in recruitment and training
- Continuous monitoring of cyber security status on a 24/7/365 basis
- Use of advanced technology particularly early threat detection and remediation
- Access to knowledge of global threats and attack methodologies
- Regular security health checks with automated and manual testing
- Clear and concise management reports
Wizard Cyber is a Managed Security Service and MDR Provider (MSSP/MDR) known for its flagship range of CYBERSHIELD-MDR services. Functioning as your 24/7 cyber security operations centre, CYBERSHIELD-MDR helps mitigate risk by continually monitoring critical IT infrastructure, endpoint and user activity. Suspicious threats are detected using advanced behavioural analytics and immediate remediation action is taken as required.