There are many factors involved in making the decision to outsource some or all of your security operations. As with any project, the first step toward being successful is to identify the problem you are trying to solve and tying that to the desired outcome. This initial step does not change - nor get eliminated - simply because there are alternate paths available. Deflecting the problem and giving it to someone else to manage does not let you off the hook. Define the wrong outcome, the wrong plan, or make the wrong decision on which service provider to use, and your organization could find itself alongside the other nearly 20 percent of managed security services programs that fail. The typical causes of failure include improper implementations, a lack of communication, and various cultural differences (country, language, or corporate).
So, should we be surprised that roughly one in five managed security service programs fail?
Read the full article at SC Magazine.
Article by: Sean Martin, CISSP