From the course: Cybersecurity Outsourcing: Vendor Selection and Management
Join today to access over 22,700 courses taught by industry experts or purchase this course individually.
Recognize and manage conflicting goals—profit vs. outcomes
From the course: Cybersecurity Outsourcing: Vendor Selection and Management
Recognize and manage conflicting goals—profit vs. outcomes
- [Instructor] As we've seen in a previous video, your top priority when working with an MSSP is great outcomes for your non-core tasks. But, the top priority of your MSSP is steady, profitable growth, and those two goals can be in direct conflict. Great outcomes for you implies thorough, high-quality products and services. But, cutting corners can be a way for the vendor to boost profits while hoping you don't notice. This is the main conflict you must monitor and manage. Here's a great example where I've seen this happen more than once. Intrusion detection system monitoring. Quite simply, the MSSP can be more profitable when the number of events it responds to is low. Why is that? Well, because investigating alarms to determine whether or not they are false is a time-consuming task. The longer it takes, the more work piles up. Eventually, the MSSP must put more analysts on their payroll which increase costs. The MSSP will feel tempted to tune the IDS, so it produces a very low…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.