INSIGHT: How businesses can choose Security-as-a-Service carefully

INSIGHT: How businesses can choose Security-as-a-Service carefully

If there's one topic that is likely to make any CIO's or IT Manager's wallet hurt, it's information security.

Ask questions, look at resumes, and be sure that the professionals providing your services truly are professional.

Certifications are good, but references are better

There are lots of security certifications on the market, and many are truly challenging to obtain and maintain, but just because someone can pass a test, doesn't mean they are a security expert.

Ask for references from previous customers or co-workers and take the time to check out the references before selecting a provider. Unless you truly are their first customer, they should have previous customers willing to take a few minutes to talk with you about their experiences.

This is not a one-time thing

Security assessments, vulnerability scanning, penetration testing, system hardening - these are perpetual needs your information technology infrastructure will have forever.

Don't look at a security assessment engagement as a one-time thing. You go to your doctor for an annual check up and you should plan on getting your security posture evaluated at least annually as well.

Read more: Bluechip Infotech expands security portfolio with Netwrix

In between those annual full check ups, you should consider a monthly vulnerability assessment just to help make sure you are keeping up with your patching and system configurations.

Does it make sense to subscribe to SaaS or bring expertise in-house?

You could contract with a Security as a Service provider to provide you with regular security services, or you could perhaps have them help your own IT team to deploy in-house systems for vulnerability assessments and patch management, and then use your provider when needed for major projects, upgrades, or annual check ups.

If your IT team has the capacity to take on the additional work needed for security, get them the right tools and training and let them take care of it.

Get an annual audit to be sure, and again, consider an external monthly vulnerability scan to make sure nothing was missed.

But if you are the IT team, as well as the sales manager and delivery driver, you probably already work 25 hours a day, and may need to rely upon the pros going forward.

Go with what makes sense for your business and your budget, but remember that a single security incident can put you out of business, so don't leave this to chance.

Information security is critical for any organisation with any IT at all - even if you run your entire business from your mobile phone, imagine what damage would be done if your email was hacked or your credit card processing system was compromised and your customers found bogus charges on their accounts.

For any business with any presence online, ensuring your systems are secure and remain so is critical to ensuring you stay in business.

There will be many independent consultants and security firms offering to help you do just that, for the right price of course.

Ensuring you get the right service for your needs is going to be the right way to help keep your business going strong, staying secure, and remaining trusted by your customers.

By David Kelleher - Director of Communications, GFI Software

Follow Us

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags GFI Software




Channel kicks 2021 into gear as After Hours returns to Auckland

Channel kicks 2021 into gear as After Hours returns to Auckland

After Hours made a welcome return to the channel social calendar with a bumper crowd of partners, distributors and vendors descending on The Pantry at Park Hyatt in Auckland to kick-start 2021.

Channel kicks 2021 into gear as After Hours returns to Auckland
The Kiwi channel gathers for the 2020 Reseller News Women in ICT Awards

The Kiwi channel gathers for the 2020 Reseller News Women in ICT Awards

Hundreds of leaders from the New Zealand IT industry gathered at the Hilton in Auckland on 17 November to celebrate the finest female talent in the Kiwi channel and recognise the winners of the Reseller News Women in ICT Awards (WIICTA) 2020.

The Kiwi channel gathers for the 2020 Reseller News Women in ICT Awards
Show Comments