Recently Written

• IT-BPO builds value up in Cebu and Mandaue, Philippines
• Know When to Outsource
• Philippines and Australia’s Future in IT-BPM
• Japan’s game developers look to the Philippines
• Social Media Philippines: Key to Success
• Outsourcing for Small-to-Medium Enterprises
• The Ten Commandments of Outsourcing
• How to Choose an Outsourcing Destination
• The Rewards of Outsourcing
• The Factors Behind Outsourcing

Categories

• Expert Corner
• Outsourcing Features
  • BPO
  • General
  • IT Outsourcing
• Outsourcing News

Archives

• August 2014
• June 2014
• May 2014
• April 2014
• March 2014
• February 2014
• December 2013
• November 2013
• September 2013
• August 2013
• July 2013
• June 2013
• May 2013
• April 2013
• March 2013
• October 2012
• September 2012
• May 2012
• April 2012
• March 2012
• February 2012
• January 2012
• December 2011
• November 2011
• October 2011
• September 2011
• August 2011
• July 2011
• June 2011
• May 2011
• April 2011
• March 2011
• February 2011
• January 2011
• December 2010
• November 2010
• October 2010
• July 2010
• April 2010
• March 2010
• February 2010
• January 2010
• December 2009
• November 2009
• October 2009
• September 2009
• August 2009
• July 2009
• June 2009
• May 2009
• April 2009
• March 2009
• February 2009
• January 2009
• December 2008
• November 2008
• October 2008
• September 2008
• August 2008
• July 2008
• June 2008

Admin

• Log in
• XHTML

Search

When you and your company outsource part of your business to a third-party, one important issue you would be concerned with would be security.

Here are the personal thoughts of several industry experts and insiders, regarding the challenges a business could face regarding its internal IT security and what could be done about it, particularly through outsourcing.

You would want to note these down.

“It’s important that a business first understands why it is seeking to outsource a particular function. This allows an assessment of the business case, and an analysis of the objectives that the solution needs to be in line with.

One common issue is that of expertise. IT security is an increasingly complex field, and many businesses have realised that they simply don’t have the expertise in-house to deal with it. Most IT departments will see some kind of manpower saving if they outsource certain IT security functions, for example.”

– Player Pate, managed security services marketing manager, IBM Internet Security Systems

“Keeping up with the sheer throughput of online threats and email malware is a giant task, and encourages many to seek expert help. It’s definitely an area of increasing maturity though – email security is now easy, web filtering is now done, too, although a few years ago this wasn’t true.

I anticipate we’ll see firewalls go next, probably mid-to late next year, they’re beginning to become a commodity that just needs to be there, there’s not a massive amount of difference between the top players. IPS and IDS management will go the same way eventually, due to the sheer volume of false alerts that they generate.

In some cases we’ll also see two-factor ID management outsourced also – small law firms, for example, that need the technology but don’t have the in-house expertise or time to manage this themselves.

– Graham Jones, UK MD, Integralis

“It is important to evaluate whether the partners bring to the table transformational experience and capability and not just operations skills. This is because the security agenda for most customers is still incomplete and the domain itself is still evolving. Just because a business needs one skillset now, doesn’t mean that another won’t be needed in the future.

Additionally, although offerings are frequently very modular, such as AV, IPS, IDS, most businesses will be seeking to solve an issue – such as PCI compliance – that combines many of these technologies.”

– Anand Kumar, practice head enterprise security services, Wipro

“A growing problem is that companies send security briefs that are unbelievable, with amazingly punitive service level agreements (SLAs) and extremely punitive timescales to solve any issue that may arise.

The trouble is that these contracts have been drafted by lawyers, not security professionals. For the business seeking an outsourcing partner, if you know your contract is impossible to fulfil, and the provider doesn’t push it back immediately with a detailed explanation of why, then assume they are not a good fit.”

Another key problem with the outsourcing industry is that most companies don’t know what to ask for in their security contact. Some are just impossible; some so easy they are a joke. A lot of the time I think good security officers are not being tough enough – they should not be afraid to ask for more – don’t be afraid to base your contract on ISO 27000.

If your provider is competent then he’ll be familiar with these provisions and will already have the process in place. If he doesn’t, then you know you’re in trouble.”

– Gerhart Knecht, global security director and chief security officer, Unisys

Reference :

Mayne, Mark. “Outsourcing made easy.” 3 December 2008. SC Magazine UK. Accessed 4 December 2008. Link here

Comments

Recommended Providers

• BPO Jobs Philippines
• FTE Outsourcing
• Outsourcing Solutions, Inc.
• People Support
• TeleTech

Recommended Articles

• Outsourcing in Cebu
• All About Outsourcing
• What is Outsourcing?
• Who Benifits from Outsourcing?
• Outsourcing in the Philippines

Ask the Expert

Please click here or send an email to jeff@outsourcing.ph with your questions about outsourcing.