Most SMBs aren’t doing enough to protect themselves from cyber attack

Security operation centers provided as a service can quickly detect, effectively respond to threats

Share on FacebookShare on Google+Tweet about this on TwitterShare on LinkedInEmail this to someonePrint this page

Cyber attacks on small and mid­size busi­ness­es are on the rise. To com­pound the prob­lem, SMBs are becom­ing the favorite tar­get of cyber attack­ers thanks to their lack of secu­ri­ty protection.

The unpre­pared­ness of small busi­ness­es makes for scary read­ing. Accord­ing to SmallBizTrends:

• 43 per­cent of cyber attacks tar­get small businesses
• Just 14 per­cent rate their abil­i­ty to mit­i­gate cyber risks as high­ly effective
• 60 per­cent of SMBs go out of busi­ness with­in six months of a cyber attack

Being able to pro­tect them­selves bet­ter is cru­cial for small and mid­size orga­ni­za­tions. Inci­dents that are self-detect­ed actu­al­ly get dis­cov­ered, on aver­age, 60 per­cent faster as com­pared to those found through an exter­nal par­ty. The quick­er inci­dents are dis­cov­ered, the quick­er they can be fixed.

But while small busi­ness­es face the same chal­lenges as large orga­ni­za­tions, they don’t have the bud­get or knowl­edge to imple­ment their own secu­ri­ty oper­a­tion cen­ters, or SOC. By pro­vid­ing this as a man­aged ser­vice, MSPs have a huge oppor­tu­ni­ty to bring real val­ue and pro­tec­tion to their customers.

Bri­an NeSmith, Arc­tic Wolf CEO

I had a chance to sit down with Bri­an NeSmith at Black Hat 2017. Bri­an is the CEO of Arc­tic Wolf, a SOC-as-a-Ser­vice com­pa­ny that aims to pro­vide the same lev­el of pro­tec­tion achieved by large orga­ni­za­tions to small­er busi­ness­es. We dis­cussed the impor­tance of SMBs secur­ing SOC-as-a-Ser­vice and the future of the indus­try. You can read the high­lights of our chat below.

Small com­pa­nies can’t pro­tect them­selves suf­fi­cient­ly. Small com­pa­nies face exact­ly the same chal­lenges as larg­er orga­ni­za­tions. They have the same threat envi­ron­ment and the same peo­ple want­i­ng to pen­e­trate and com­pro­mise their infra­struc­ture. Unfor­tu­nate­ly, they can’t afford the breadth of tal­ent and lev­el of infra­struc­ture required to imple­ment suf­fi­cient pro­tec­tion. That’s why being able to lever­age a man­aged ser­vice is so important.

SOC-as-Ser­vice helps orga­ni­za­tions digest the data they already have. This is one of the major chal­lenges fac­ing small­er orga­ni­za­tions. They may be able to gen­er­ate the data, but they strug­gle to make sense of it. That’s the focus of SOC-as-a-Ser­vice. Com­pa­nies don’t know why their secu­ri­ty isn’t work­ing, but by hav­ing experts ana­lyze the data for them, we can help them find out why.

SOC-as-a-Ser­vice must be man­aged and cus­tomiz­able. Every com­pa­ny is dif­fer­ent, but they all have a set of com­mon things that every­one agrees is not good. That’s why at Arc­tic Wolf we built a prod­uct we can cus­tomize for each client. Every­thing runs on a com­mon infra­struc­ture, but it can be unique to each cus­tomer in order to suit their spe­cif­ic needs. But it isn’t enough to be cus­tomiz­able. The ser­vice has to be ful­ly man­aged. That means a con­sul­ta­tive aspect is required. At Arc­tic Wolf, we found that cus­tomers didn’t just want us telling them what was wrong; they want­ed help evolv­ing their infra­struc­ture. By pro­vid­ing advice on what prod­uct to buy or how to struc­ture their net­work, we become an exten­sion of their in-house IT department.

The future of SOC-as-a-Ser­vice. SOC is about under­stand­ing when your defens­es have failed. If you think you’ll nev­er be breached, then you are liv­ing a lie. A breach itself is not the end of the world if you can reme­di­ate it. This is what the largest com­pa­nies have learned and small­er com­pa­nies must learn in the future. They can’t stop every breach, but what they can do is rec­og­nize when some­thing is breached, with the help of SOC-as-Ser­vice, and get it reme­di­at­ed quick­ly and in a way that doesn’t cre­ate real dam­age. Secu­ri­ty breach­es are a cost of doing busi­ness, and the more small- and medi­um-size busi­ness­es real­ize that, the big­ger the uptake in man­aged secu­ri­ty oper­a­tion cen­ter services.

More sto­ries relat­ed to net­work secu­ri­ty for SMBs:
Set up a VPN to pro­tect your small or mid­size busi­ness from a breach
More SMBs let their guard down on cybersecurity
Using Word­Press? Secu­ri­ty ser­vices can sig­nif­i­cant­ly ease wor­ries about being hacked