Hi. Welcome to Ingram Micro.

Please choose your role, so we can direct you to what you’re looking for.

If you’d like to learn more about Ingram Micro global initiatives and operations, visit ingrammicro.com.

How to choose between MDR, MSSP, and SIEM-as-a-service

September 09, 2021

How to choose between MDR, MSSP, and SIEM-as-a-service
 
powered by Sounder



Before the pandemic, security teams were stretched perilously thin. Now, with the onset of remote work and the continuing avalanche of new technology onto our networks, security teams are at their breaking point.

There simply aren’t enough individuals to do the job.

That’s where security-as-a-service can fill the gap.

Shelby Skrhak speaks with Christopher Fielder, Director of Product Marketing for   Arctic Wolf, about:

  • Today’s threat landscape
  • MDR, MSSP, and SIEM-as-a-service
  • What sets Arctic Wolf apart from competitors


Today’s threat landscape

“Technology is coming onto the market faster than we can address it,” Christopher says.

That combined with the sudden switch to work from home has made the job of a security professional nearly unmanageable.

We’re seeing many recent successful cyber attacks for these very reasons.


MDR, MSSP, and SIEM-as-a-service

Security-as-a-service has emerged as a way for companies to fill critical gaps in their security posture. There are three options on the market.

Managed detection response (MDR)

The problem for many companies is not that they don’t have the tools in place to manage security, it’s that they don’t have enough people to manage the tools.

These companies are generating alerts, security issues are getting flagged, but none of them are getting addressed.

MDR provides individuals to identify and respond to those alerts.

Managed security service providers (MSSP)

MSSPs are concerned with how you generate security alerts. It provides the technology needed to start producing alerts and detections, but it doesn’t provide a response to those threats.

MSSP is a great option if you already have individuals in your organization who are trained and available to use the tools and respond to those alerts.

Security information and event management (SIEM-as-a-service)

SIEM is a tool that collects log data from all the different tools in your environment and places it in a centralized location.

However, it requires very specialized users who know how to tune it to address the alerts and get actionable data out of the logs.

It’s a good option if you have good people and processes in place for security, but you want to hire somebody to focus solely on your SIEM so that your team can work on other elements of your security strategy.


Arctic Wolf

Arctic Wolf is different from other MDR vendors in that it is vendor neutral. They don’t force you to build your security stack a certain way, they work with what you’ve got in place.

In addition, the company takes a concierge approach. Whatever your security needs and goals are, a concierge security engineer is available 24/7 to make sure you’re fully covered.

For more information, contact Mira Morse or visit  Arctic Wolf’s Resource Center.