• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Cloud   »   The Security as a Service Model

The Security as a Service Model

  • Posted on:September 29, 2009
  • Posted in:Cloud
  • Posted by:
    John Maddison
0

It’s been almost four years ago since I started to look at the SaaS security model for Trend Micro. To be honest, being a software company, it was very hard getting anybody’s attention. However, the team persisted and sometimes learnt the hard way around what it takes to deliver high availability SaaS applications. Software as a Service (SaaS) is now a well established, cost effective way to deliver traditional software applications without the investment in infrastructure and qualified personnel. The most adopted applications for SaaS are around productivity such as CRM and ERP. However, there is another SaaS market growing rapidly and with global revenues in excess of $500m.

Security SaaS applications, sometimes referred to as Security as a Service, offer the same benefits any other SaaS application. In fact some Security SaaS applications have additional benefits. Hosted Email Security offers a very cost effective way to protect your email systems AND takes the burden of tuning for the best Spam detection from the team. Such services are ideally suited for all types of customers. For example Trend’s IMHS Hosted Email services hosts customers as small as 5 seats and as large as 50,000 seats. Value add email security SaaS applications, such as encryption, can be added with rapid deployment times.

Another successful Security as a Service application is vulnerability scanning and assessment. This is also referred to as the hybrid model since the majority of the functionality is carried out in the cloud with some elements placed within the customer network.

However, not all security applications are suitable. It’s debatable if you want all your Internet traffic flowing through SaaS security gateways. Firewall and web proxy traffic may be enabled best on premise because of the traffic volume. Endpoint Security applications that require constant interaction with internal network elements or for larger customers with very distributed networks may be too complex for cookie cutter security SaaS providers. In these cases Managed Security Service Providers (MSSP’s) are sometimes used to compliment internal resources.

Companies today should probably choose a combination of pure SaaS security, hybrid SaaS security, managed security services and on-premise (or Private Cloud) solutions. It will depend on the applications and the network size/architecture as to which is used.

Related posts:

  1. Why aren’t cloud services secured as a service?
  2. Will Security Appliances Be Undone by SaaS Security?
  3. Accelerating PCI Data Security Standard projects with Deep Security as a Service
  4. Equipping Cloud Service Providers with Comprehensive Security

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • New Report: Top Three Ways to Drive Boardroom Engagement around Cybersecurity Strategy
  • Advanced Cloud-Native Container Security Added to Trend Micro's Cloud One Services Platform
  • Trend Micro Goes Global to Find Entrepreneurs Set to Unlock the Smart Connected World
  • Winners of Trend Micro Global Capture the Flag Demonstrate Excellence in Cybersecurity
  • Companies Leveraging AWS Well-Architected Reviews Now Benefit from Security Innovations from Trend Micro
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.