What are Managed Security Services?

MSSP, Managed Security Service Provider. Is a professional organization that provides MSS services.

MSSP

(Secure hosting service provider)

MSS, Managed Security Service, is a security outsourcing service that outsources the security operation and maintenance of its business system to external professionals

DDOS attack

worm

Network traffic anomaly monitoring

System resource availability monitoring

Intrusion and threat detection

Vulnerability assessment and management

Threat analysis (combining availability and security incidents)

Security event storage and query

Compliance Testing (ISO27001, PCI, ...)

Provide dashboards and operation and maintenance reports

...

Reduce costs: staffing, skills requirements, site requirements

24/7 monitoring: 7 × 24 monitoring service

Risk monitoring: Effectively monitor security risks and provide solutions the first time

Identify and resolve issues: Identify and resolve possible security issues in a timely manner

Trend analysis: professional security trend analysis, monthly, quarterly, and annual security analysis reports

Log storage and query: effective log storage and backup, fast query positioning

One-way transmission: one-way transmission of security event data (no entry)

Encrypted transmission: Permitted information, encrypted transmission to SOC (SSL)

Execution authority: monitor and provide solutions without unauthorized changes

Legal protection: The legal interests of both parties can be protected through relevant contract terms

The customer needs to provide:

One server acts as Agent; provides corresponding data interface;

Open SSL encrypted channel;

Install the appropriate plugins;

Logs sent to Agent

Remote monitoring: Real-time event monitoring and analysis of user safety equipment and application systems through SOC.

Event notification: promptly notify users of important security events via SMS, email, phone, etc.

Phone, email, and SMS support: Provide technical support by phone or email for security issues encountered by users.

On-site service: When important safety incidents occur, arrive at the scene in time to assist customers in analyzing and solving problems.

Application support: SOC provides customers with real-time monitoring, events, alarm information, and analysis reports.