Within this trend, a vital point is the security of the systems. Cyber threats are growing exponentially, as is the health crisis. Week by week, attacks on the safety of business systems are tripling, to the point that it has become one of the main concerns of companies. According to Forrester forecasts, this 2020, companies will have to spend about US$640 million on cloud security, a figure that will grow to more than US$12 billion by 2023.
Remote workstations require secure access to databases, business networks, and various applications; as well as e-commerce portals and online payment systems; and the most efficient way to make them available is through contracts with companies that provide Security Operations Centers (SOC) under the modality of a monthly contract, known in the IT industry under the concept of SOC as a service.
Hiring SOC as a service has great advantages, says Manuel Gaete, Commercial Manager of ANIDA Chile, because it allows companies to have technology, processes, and people focused on the continuous improvement of their security systems. “Technology focused on monitoring security processes and services, constantly updated according to emerging threats that arise permanently; Processes, from the point of view of standardization and automation, focused on continuous improvement of the customer’s security levels; and People, which translates into professional specialists and in constant training on new security trends worldwide,” he details.
Key aspects that define a top-tier provider in this area are the experience of the professionals in charge of a SOC. The expertise establishes the speed and accuracy with which they respond and comply early with incidents or critical requirements. According to Manuel Gaete’s opinion, it is important to complement the experience with recognized technologies such as Fortisiem, ISO 27001 certifications, and professionals with security certifications -CISSP, CEH, CISM, and CISA, for example- but the essential thing is to focus on developing processes that are specifically integrated with what the client needs and expects.
“It is necessary to know the internal process of each company and, based on that, develop key security indicators for the client. In this way, feedback between business needs and technology services is achieved, and as a consequence a constant flow of improvements”, he explains.
The Security Operations Centers (SOCs) monitor and manage security teams – mostly firewall and antivirus – with an emphasis and reactive focus on threat prevention. In this way, as attacks are received, preventive measures are applied. One step further is the Security Intelligence Centers (SIC), which analyzes historical data to determine trends and patterns and apply automation actions to detect and prevent threats.
Companies in the banking, telecommunications, and industry sectors are increasingly opting to hire security operations centers on a monthly contract, mainly because it brings them savings in hardware, software, and specialist professionals. “Customers in the banking sector have reported annual savings of up to 32% in equipment, 35% in software licenses, and 25% in professional security specialists. Transferring the security risk of the internal operation of the companies to security specialists is a good business and guarantees maximum levels of security in operation”, highlights Manuel Gaete.