In today ’ s rapidly evolving threat landscape , SMBs are making investments to bolster their cyberdefences . But this complex environment can be challenging to manage . Rob Harrison , SVP Products and Services , Sophos , talks us through the benefits of working with an expert managed services provider versus relying on an in-house team with multiple priorities to juggle .

ast year , two-thirds of organisations

However , it looks like this alarming reality is beginning to sink in . To counteract these dark forces , there has been a notable shift in attitudes and actions within the business world . Small to medium-sized businesses ( SMBs ), which are often viewed as vulnerable targets , are beginning to take arms and bolster their cybersecurity defences . Some analysts are even indicating an increase in investment in cybersecurity , with SMBs expecting to increase their spending on security from US $ 3.2 billion in 2022 to US $ 4.3 billion in 2026 .

While increasing investment in cybersecurity is a step in the right direction , knowing where and how to spend it is a different story and for many small businesses , making informed decisions about where and how to invest resources into cybersecurity remains challenging .

The debate for SMBs is centred around a crucial decision : whether to enlist the expertise of a managed detection and response ( MDR ) provider or establish and implement an in-house security operations team . Embracing the reality that there is no onesize-fits-all approach , businesses need to be wellequipped to make informed decisions to navigate the ever-changing threat landscape effectively .

Cybersecurity costs and considerations

When trying to decide between an in-house or a managed service provider , organisations must consider the costs associated and tailor a solution that aligns with the needs of the business and its budget . While investing in an external team might seem like a costly expense , the true cost of recruiting , onboarding , training and retaining inhouse talent can be much more .

For example , recruiting skilled cybersecurity professionals involves a vast amount of investment in terms of advertising , interviewing , training and onboarding new employees . Finding talent within cybersecurity has become increasingly difficult too , particularly with the shortage of in-house cybersecurity skills being the third biggest cyberrisk concern for IT professionals .

When considering the time to return on investment ( ROI ), Security-as-a-Service ( SECaaS ) offers a much more efficient route to keeping an organisation ’ s networks and assets secure . In-house security teams often take a considerable amount of time to

Rob Harrison , SVP Products and Services , Sophos

WWW . INTELLIGENTCISO . COM 63