A trusted MSSP with CyberSOC makes a whole difference with security

With an increasing number of people turning to digital or cashless for their payments and transactions, this has inevitably led to a surge in cyberextortion cases, affecting many of the population’s laymen who are not quite informed about the latest offensive techniques deployed to target victims. In fact, there is also a strong correlation suggesting that any normal unsuspecting employee could have had their mobile devices and notebooks infected while in use before the virus is transferred onto the corporate network and system for cybercriminals to inflict the most harm upon.

Earlier this year, the Hong Kong government passed a crucial bill known as the ‘Protection of Critical Infrastructures (Computer Systems) Bill’ to bolster the security posture of critical computer systems within 2 categories of critical infrastructure; the first category consists of the banking sector and financial institutions along with other essential service providers like telecommunication services and energy. This legislation has set forth the requirements in preventing service disruptions and addressing the increased risk exposure to global attacks, necessitating for companies that operate under the said category to hire a trusted Managed Security Services Provider (MSSP) that can ably provide reliable cybersecurity services.

In the past, while companies can procure ad-hoc services from a Security Operations Center (SOC) to demonstrate that they have ‘SOC in place’, however, the new bill strictly requires that they will need to establish a monitoring and detection mechanism and put in place a system that responds in a continuous and timely manner, while consistently collecting and analyzing intelligence / information with regular reviews conducted on the monitoring mechanism – hence the need with onboarding a specialist vendor or MSSP in this case, or the companies risk punishments and a damage to their reputation. Organizations are therefore treading this journey a lot more carefully as their foremost concern would be the quality of the cybersecurity services and trust with the supplier. 

While there are vendors in the market that may claim of having an established SOC in Hong Kong, however, many do not have the expertise, capabilities, and range of offerings to predict and analyze a threat or plausible attack. In fact, what we are seeing is also a gap left by a Big 4 accounting giant (which has a SOC) for their SOC-related services in Hong Kong – following a crisis spillover that arose from an incident in their mainland China operations, leading the recent exodus of clients and partners. The void resulting from the crisis with a potential takeover of its cybersecurity arm meant that customers would be seeking a new trusted services provider that they can engage for their cybersecurity services.

Orange Cyberdefense, which is frequently ranked as one the top-tier players in the market by major analyst firms, is a leader in CyberSOC expertise with our demonstrated service excellence for customers. In APAC, apart from serving China and Hong Kong, our Orange Cyberdefense CyberSOC is also present in Singapore, Malaysia, and India to bolster support to the region’s broader markets. And when it comes to China and Hong Kong, the CyberSOC that is based in Shanghai ably offers an acute visibility of regulations and compliances that govern those market, positioning us with a unique proposition as we distinguish ourselves from competitors who may not be able to offer the same. This is because as the information security laws in China are much stricter and tighter, thereby, our ability to comply to China’s framework makes us a preferred cybersecurity vendor to support companies in Hong Kong with secure, trusted, and compliant solutions and services. 

In fact, we are proactively engaging with customers in Hong Kong and to an extension, Macau too, where we hosted guests with visits to our facility in Shanghai. As SIEM (Security Information and Event Management) is the heart of the CyberSOC, we demonstrated to customers on how we could manage the solution with remote access for continuous monitoring of an organization’s security. They were impressed by how the management of their systems and surfaces could be handled remotely by our sizeable manpower, resources, and technology. The strength of Orange Cyberdefense lies in our threat research, cyber intelligence, and data insights, particularly with our extensive network of over 30 SOCs globally that collaborate with each other while supported by a research team of more than 250 experts who conduct R&D and carry out detection of new attacks worldwide each week.

In China, our reference customer profiles range from sectors like large retailers and logistics, to pharmaceuticals and manufacturing. We are continuously expanding to other target sectors like telecommunications, manufacturing, and BFSI not just in Hong Kong and China but also the broader APAC region, as well as entertainment operators in Macau which are originally from the US or Europe but have established their bases here. Thanks to our strong European anchorage (we are also a certified leader in European managed shared services as recognized by IDC and Forrester) with a local presence in China that does 24/7 monitoring with incident response, Orange Cyberdefense has the leverage to deliver the safest digital space for our customers, based on 3 flexible SOC engagement models we are premised on, which are the Leverage of MSSP model, Hybrid SOC model, or Build and Transfer model. Each model offers its respective advantages and level of service / management, catered to the needs, challenges, and budget of all customers.