How MSSPs Can Facilitate Network Access Control Deployments for Customers
… service solution should be:
- Centrally architected: With a centrally architected solution, no trucks or gear will be needed for on-premise deployments. This will save both customers and MSSPs time, money and frustration when it comes to managing a NAC solution.
- Subscription-based: With subscription-based licenses, MSSPs can tie cost to revenue. Offer different levels of service to customers, each with its own set-up services and associated costs. The higher the level of service, the deeper the engagement with the customer.
Also Comprehensive
Comprehensive: The third-generation NAC solution MSSPs provide to their customers should meet the following criteria to provide the highest level of security possible:
- Visibility – NAC solutions should be able to view and evaluate endpoints before connecting to the network. The chosen solution should also be able to categorize device users and continue risk assessment post-connection.
- Endpoint vulnerability assessment – The solution MSSPs provide to customers should have the ability to determine critical device vulnerabilities, including outdated software and uninstalled patches.
- Granular control – After devices and users are identified, the solution should be able to support intent-based segmentation based on defined device and user information, as well as contextual and role-based information, to automatically enforce security policies.
- Integration – NAC should also seamlessly integrate with other solutions across the security architecture to actively share information about potential threats and enforce controls across the organization. This should also include interoperability with third-party products.
- Real-time response – The solution should facilitate active device monitoring and automated, real-time threat responses to aid in the immediate containment of suspect devices before significant damage occurs.
- Automated workflows – NAC should enable self-provisioning, automated device onboarding, and self-remediation prompts should a device not meet minimum security standards.
- Flexibility and scalability – It should also include a scalable architecture that can support multiple locations across the enterprise network. And, across unlimited devices. It should also offer flexible deployment across physical, virtual, and cloud locations.
As IoT and BYOD expand the attack surface and new vulnerabilities become exposed, customer networks will require a comprehensive NAC solution to manage the impact new devices can have on the network. MSSPs can take advantage of this growth opportunity by providing enterprise-grade NAC solutions and service capabilities. These offers assist customers with deployments and ongoing maintenance. As a result, customers will realize enhanced visibility, control and threat response. MSSPs will benefit from increased client loyalty and service revenue.
Jon Bove is the vice president of channel sales at Fortinet. He and his team are responsible for strategizing, promoting and driving the channel sales strategy for partners in the U.S. A 17-year veteran of the technology industry, Bove has held progressively responsible sales, sales leadership and channel leadership positions. Follow @Fortinet on Twitter or Bove on LinkedIn.
- Page 1
- Page 2