Managed Security Service Provider (MSSP): intrusion handler

for Companies system monitoring

I. Introduction
A Managed Security Service Provider (MSSP) providing a software and services
that keeping safe of all data and information especially in monitoring system by
building a network of security experts that can detect and respond when intrusion
happens. MSSP also known as information technology (IT) service provider for
securing also business from security threats.
Managed security service provider (MSSP) provides outsourced monitoring and
management of security devices and systems. Common services include managed
firewall, intrusion detection, virtual private network, vulnerability scanning and
anti-viral services. MSSPs use high-availability security operation centers (either
from their own facilities or from other data center providers) to provide 24/7
services designed to reduce the number of operational security personnel an
enterprise needs to hire, train and retain to maintain an acceptable security
posture [1].
Companies and business are most commonly use MSSP as security providers
wherein to reduce expenses especially in maintaining security functions in some
documents and data to secure information, instead of hiring people in a company
to manage those security functions, outsourcing security can be cost-effective
option for the company system assurance in securing data.

II. Review Related Literature

Chen, S., Han, Y., Chau, D.H., Gates, C., Hart, M., & Roundy, K. (December, 2017)
CHAPTER 8: Predicting Cyber Threats with Virtual Security Products Retrieved
from: https://www.csie.ntu.edu.tw/~stchen/paper/shang_thesis.pdf
Cybersecurity analysts are often presented suspicious machine activity that
does not conclusively indicate compromise, resulting in undetected incidents or
costly investigations into the most appropriate remediation actions. There are
many reasons for this: deficiencies in the number and quality of security products
that are deployed, poor configuration of those security products, and incomplete
reporting of product-security telemetry. Managed Security Service Providers
(MSSP's), which are tasked with detecting security incidents on behalf of multiple
customers, are confronted with these data quality issues, but also possess a
wealth of cross-product security data that enables innovative solutions. We use
MSSP data to develop Virtual Product, which addresses the aforementioned data
challenges by predicting what security events would have been triggered by a
security product if it had been present. This benefits the analysts by providing
more context into existing security incidents

Gupta, A. & Zhdanov, D. Growth and Sustainability of Managed Security Service

Networks Retrieved from: http://citeseerx.ist.psu.edu/viewdoc/download?
doi=10.1.1.93.277&rep=rep1&type=pdf
Managed Security Service Provider (MSSP) networks are a form of
extended enterprises where several firms share resources such as diagnostics,
prevention tools, and policies to provide security for their computer networks.
While decisions to outsource security operations of an organization may seem
counterintuitive, there are potential benefits from joining a MSSP network due to
pooling of risk and access to more security-enabling resources and expertise
Outsourcing of security services is an interesting but perplexing phenomenon
because firms are often ready to hand over the security of their precious digital
assets to outsiders. Estimates report the current number of companies obtaining
security from outside providers to be up to 30% and growing. A compound annual
growth rate in the market of Managed Security Services Providers (MSSP) is
estimated to be at least 17-20%

III. Methodology
RESOURCES
[1] https://www.gartner.com/en/information-technology/glossary/mssp-
managed-security-service-provider