Sourcing Monthly April 2018 – May 2018
Conclusion: This month, there have been increased discussions regarding highly targeted, industry-specific security threats. Security issues for managed service providers can be especially complex due to the nature of the industry and delivery frameworks. Targeted attacks on vendors that support a large and diverse client base, utilising intricate, often intertwined solutions which cater to a wide range and large number of business functions, can result in difficulties when security issues arise. Problems such as theft, malicious attacks, denial of service and framework collapses can cause added risks because of vendor/client structures in this sector. For vendors, attacks can result in difficulties such as managing security issues over a large number of clients or associated entities which provide services. For clients, outsourced networks spanning different sites and critical functions are amongst the variety of threats which can leave clients exposed. Responses for vendor co-ordination with clients, as well as associated service providers and partners, must be considered and thoroughly planned when developing response measures for service providers. Measures must be as robust as possible, as well as sufficiently flexible to cater to unforeseen events and the complex nature of the managed services sector, where threats can be highly variable in nature, volume and extremities.