Organisations across New Zealand facing unrelenting cyber risks while under pressure to reduce costs in a faltering economy can benefit from outsourcing core aspects of their information security requirements, reducing the cost of protection without raising their risk profile. In particular, Managed Detection and Response (MDR) offers a combination of technology and expertise which most organisations cannot themselves field, with the shared cost of the service making it widely accessible.

That’s according to Steve Smith, Auckland regional manager of managed services and security solutions provider, Advantage. 

“MDR is an alternative to an in-house Security Operations Centre (SOC); while only the largest of local companies are likely to have a SOC, every company benefits from round-the-clock monitoring of their entire threat surface,” he says.

His view is confirmed by analysts, including Markets and Markets, which notes the nascent MDR market is set for expansion at a compound annual growth rate of 16%, going from a modest US$2.6 billion in 2022 to US$5.6 billion by 2026. The researcher says factors driving growth include a need for cybersecurity skills and budget constraints.

With endpoints routinely targeted by hackers, Smith says good security must include visibility to individual user smartphones, laptops, and other devices. 

“These endpoints are rich pickings because they are also often the point at which technical hacking is combined with social engineering. Hackers always look for the weakest link in the chain, and in many instances find it in the hands or at the fingertips of your people.”

A recent Verizon study indicates that human error is behind up to 82% of security breaches.

A more dated study from IBM (2014) put the people factor behind 95% of security incidents. 

“People make mistakes. We click on things we shouldn’t, we open questionable web pages, we fall for phone calls claiming to be the IT manager requesting a password. When that happens, you want the sort of visibility which means acting without delay. Because the longer the dwell time, the more damage a hacker does,” said IBN then.

Through its partnership with SentinelOne, Advantage provides centralised around-the-clock monitoring of the entire attack surface of every client. 

“SentinelOne is at the forefront of putting artificial intelligence (AI) to work for the cybersecurity industry: It uses machine learning for monitoring endpoint devices and cloud workloads using a heuristic model based on patented behavioural AI,” adds Smith.

The AdvantageProtect service is built around a team of trained, certified, and experienced incident response engineers, which combines with SentinelOne's endpoint monitoring detection, response, and prevention of security incidents on endpoint devices. In addition, the service includes a "one-click ransomware rollback", guided remediation, and compliance assurance.

AdvantageProtect is unique in New Zealand, adds Smith, with Advantage as the only SIREN-certified (SentinelOne Incident Response Engineer) partner. In addition, it is the only partner with a local SOC providing SentinelOne MDR; and the only partner providing GCSB Malware Free Networks within the SentinelOne platform.

Smith notes outsourcing MDR delivers optimal bang for the buck and is ideal for organisations of any size. 

“Hackers are a busy lot and they’re motivated by financial reward. With endpoints in the firing line, MDR takes back control for a secure and safe environment for every individual and your organisation as a whole,” he concludes.