The lines between general purpose MSPs, true MSSPs and cybersecurity consulting firms continues to blur. The latest example: Six Degrees, a cloud-centric MSP, has acquired cybersecurity consulting firm and managed security services provider CNS Group of London. Financial terms were not disclosed.
CNS Group, founded in 1999, has approximately 50 employees and generates roughly US$8 million in annual revenues. The company offers cyber, business and managed security services to private and public sector customers, and also serves businesses in highly regulated markets.
Six Degrees will leverage CNS Group’s dedicated Cyber Security Operations Center (CSOC) to deliver government-approved cyber services. The new parent will also promote CNS Group’s Cyber Security Maturity Benchmarking model, Aegis, into client sites.
Six Degrees, CNS Group Executives Explain the Deal
Explaining the deal, Six Degrees CEO David Howson said:
“The increasingly complex cybersecurity threat landscape is a major challenge for businesses, who struggle to align IT resources against the risks they face. Existing clients want to place more of their IT estate with us, and security is a vital part of the picture. CNS Group’s loyal client base, serviced by a strong management team and talented staff, provides the perfect fit to enable Six Degrees to offer a broader set of cybersecurity services. Together we will continue to work within the key markets in which we operate, with a strong emphasis on our collaborative ‘client first’ approach, to meet evolving technology requirements and enable our clients’ brilliance.”
Added CNS Group CEO Shannon Simpson:
“Working with Six Degrees will enable us to bring our highly accredited security offerings to all of the services they offer, and we will give clients additional peace of mind and assurance that their data assets are safe,” he said. “With a history of successful acquisitions and client care for those acquired with a company, we are confident that this will be a smooth and successful integration into the group.”
MSPs And Managed Security Services Strategies
MSPs worldwide are pushing deeper into security, though the paths forward vary greatly from company to company. Some are making acquisitions. Others are standing up their own SOCs (security operations centers). But most are looking to partner.
Experts recommend MSPs start with some very specific first steps -- in particular, ensure basic managed services address patch management, endpoint security and business continuity (backup, disaster recovery and DRaaS).
Among the potential next steps: Explore these 10 managed security opportunities, launch or spin-off a dedicated managed security practice, and/or partner with a Top 100 MSSP.
Additional insights from Joe Panettieri.