Why Managed IoT Security Services is the next big thing
Imagine getting into your – future - office’s front door and it is not opening because an IoT Distributed Denial-of-Service (DDoS) attack disrupted all the IoT-based access to it. Yes you have multifactor authentication to get in, but your mobile (one of the factors) has no signal, your IoT-glasses do not have 5G connection anymore and even the smart-lock on the door is not working as the IoT gateways behind are not responding. Who to call?
We are not that far from this kind of IoT connected scenario. Internet of Things is here to stay. IoT took time to settle in the market but now it is moving from a buzz word to a key business enabler. This is true today for Industrial environments (IIoT) but it will soon be adopted in all verticals and heterogeneous business areas, extending beyond IT or operations as it is today to all kind of processes in your organization… perhaps even the physical access to your office!
As Gartner predicts(1), IoT will increasingly involve changes for a broad range of processes in multiple business units as diverse as:
- Sales - IoT often enables a move from products to services;
- Finance - reflecting new revenue sources;
- Marketing - with new direct routes to customers;
- Product management - for life cycle management and product feedback;
- Customer care - for better insight into user behavior;
- the CEO Office - as this transformation will permeate so much of the organization.
The more IoT will expand within organizations the more it will deserve proper management, especially from a security perspective. Today, as was also argued in the recent blog series on Managed Enterprise IoT, it is already a challenge to get any kind of standardizations in the IoT world either around hardware, software, platforms or communication protocols. The adoption of new processes and verticals with new requirements will just increase this diversity… Such an increase will lead to an even more complex ecosystem which, in turn, will translate into a massive threat landscape.
No single vendor will be able to propose an end-to-end security solution for such heterogeneous IoT ecosystems thus Managed Security Services Providers (MSSPs) will become the only ones able to position themselves as the guardians of an IoT based businesses. MSSPs are already working towards such security platforms. Their experience in Managed Security Services provides a competitive advantage against traditional vendors as:
- Many services from Cybersecurity can be extended to the IoT Security world: SIEM as a Service for IT and OT, Identity of Things as a Service, etc. However, every single service requires careful specialization and integration capabilities.
- Multi-skilled MSSPs having multiple capabilities and experience as software development and/or hardware manufacturing will pave the way to such complex integrations
- Leveraging being part of much larger IT services organization will enable MSSPs to manage more parts of the IoT Value Chain.
Finally establishing the right partnerships and alliances will be absolutely key: it is not only about partnering with software and hardware companies specialized in IoT products, but also partnering with customers in Proof of Concepts and joint innovation programs.
Gartner(2) again forecasts worldwide IoT security spending will be beyond $3 billion in 2021. IoT Managed Security Services will definitely be a big part of it.
(1)Gartner, Inc. “Market Trends: Strategies for Optimizing IoT POCs“(2)Gartner, Inc. “Forecast: IoT Security, Worldwide, 2018”