Most wanted: threat intelligence is the most sought-after security service for MSPs
October 2021 by Kaspersky
The majority (93%) of managed service providers (MSPs) are currently planning to add new services to their cybersecurity portfolio, with threat intelligence being the top choice (46%). These are the findings of a new Kaspersky report ‘MSP market focus in 2021: IT security challenges and opportunities in the new normal’. As perceived competition in the market has risen since 2019, pricing, quality of protection, and ability to offer additional services become key factors for choosing a cybersecurity vendor.
Cybersecurity is one of the most prominent areas of growth for MSPs, according to various industry experts. It presented the biggest opportunities for growth in 2021, together with remote workforce setup – with 65% of MSPs reporting security service revenue growth as a result. As for threat intelligence, which was the top interest of MSPs revealed by the Kaspersky survey, “it is a key aspect of security architecture that helps security and risk management technical professionals detect, triage, and investigate threats,” according to Gartner.
Among various threat intelligence services, the most interesting for MSPs according to the research is APT reporting (29%), which allows them to keep up to date with the most recent investigations, threat campaigns, and techniques of APT actors. This is followed by threat data feeds (27%) and threat lookup (26%) that help to improve incident response. Other services that providers look for include malware analysis (41%), security assessment (41%), and targeted attack discovery (38%). Expanding their portfolio with cybersecurity services can help MSPs strengthen their position in the market which has become quite competitive. In 2021, the majority (81%) of providers reported an increase of their client base since 2019, and a third (32%) see the competition from other MSPs as the most serious business challenge in comparison with only 19% in 2019.
This competitive environment also determines the requirements for cybersecurity vendors. When it comes to choosing a vendor for the service, the number one criterion for MSPs is competitive pricing (45%), followed by quality of protection in tests (41%) and the ability to offer additional services (36%). These should allow MSPs to build the best threat intelligence offering for their customers.
“Managed service providers understand the business need to combat security risks in an increasingly complex environment. Today, when a reactive approach to cybersecurity is not enough, MSPs have to seriously address the choice of threat intelligence (TI) service providers. High-quality TI implies a range of characteristics, such as possession of a rich context that creates intelligence from data and provides additional value. It also implies support from a recognised team of experts with proven experience in uncovering complex threats, and the smooth integration of services into a company’s existing security operations,” says Mikhail Kolchin, Head of MSP Business at Kaspersky.