Nowadays, this technology centric managed services approach is being replaced by a more holistic “solutions” approach to outsourced security management.
This is a response to security no longer being a problem discussed in technology terms at an IT level, but a high-priority risk area discussed and resolved at board level.
Hence, the client need is no longer around solving a technology gap or need, but around solving risks existing at the broader business level.
To provide such support, outsourced security providers meet such needs by combining security professional services (consulting, advisory, security risk management and testing etc.) alongside technical service support for a wide range of silo technologies.
This shift is significant, as responsibility and accountability under this new approach moves from buyer to provider, with the solutions provider measured with both technical SLAs as well as business-level KPIs.