How Datacenter Adjacency and Global Partnership Ecosystems Propel Adoption of Hybrid Cloud

Transcript of a discussion on how Equinix, Microsoft Azure Stack, and Cloud28+ together are advancing and extending hybrid cloud options across the globe.

Listen to the podcast. Find it on iTunes. Get the mobile app. Download the transcript. Sponsor: Hewlett Packard Enterprise. 

Dana Gardner: Hello, and welcome to the next edition of the BriefingsDirect Voice of the Customer podcast series. I’m Dana Gardner, Principal Analyst at Interarbor Solutions, your host and moderator for this ongoing discussion on digital transformation success stories.

Gardner

Our next hybrid cloud advancement interview explores how the triumvirate of a global data center hosting company, a hybrid cloud platform provider, and a global cloud community are solving some of the most vexing problems for bringing high-performance clouds to more regions around the globe.

We will now learn how Equinix, Microsoft Azure Stack, and Hewlett Packard Enterprise (HPE)’s Cloud28+ are helping managed service providers (MSPs) and businesses alike obtain world-class hybrid cloud services.

Here to help us explore new breeds of hybrid cloud solutions is David Anderson, Global Alliance Director at Equinix for its Microsoft alliance.

Welcome, David.

David Anderson: Thanks for having me, Dana.

Gardner: We are also here with Xavier Poisson, Vice-President of Worldwide Services Providers Business and Cloud28+ at HPE. Welcome.

Xavier Poisson: Hi, Dana, thanks.

Interconnected cloud interactions

Gardner: It seems to me there is a paradox when it comes to the hybrid cloud -- that it works best in close proximity technologically yet has the most business payoff when you distribute it far and wide. So how are Equinix, Microsoft, and HPE together helping to solve this paradox of proximity and distribution?

Anderson

Anderson: That’s a great question. You are right that hybrid cloud does tend to work better when there is proximity between the hybrid installation and the actual public cloud you are connecting to. That proximity can actually be lengthened with what we call interconnectedness.

Interconnectedness is really business-to-business (B2B) and business-to-cloud private network Ethernet connections. Equinix is positioned with more than 200 data centers worldwide, the most interconnections by far around the world. Every network provider is in our data centers. We also work with cloud providers like Microsoft. The Equinix Cloud Exchange connects businesses and enterprises to those clouds through our Equinix Cloud Exchange Fabric. It’s a simple one-port virtual connection, using software-defined networking (SDN), up to the public clouds.

That provides low-latency and high-performance connections -- up to 10 Gigabit network links. So you can now run a hybrid application and it’s performing as if it’s sitting in your corporate data center not far away.

The idea is to be hybrid and to be more dispersed. That dispersion takes place through the breadth of our reach at Equinix with more than 200 data centers in 45 metro areas all over the world -- and so, interconnected all over.

Plus, there are more than 50 Microsoft Azure regions. We’re working closely with Microsoft so that we can get the cloud out to the customers fairly easily using the network service providers in our facilities. There are very few places on Earth where a customer can’t get from where they are to where we are, to a cloud – and with a really high-quality network link.

Gardner: Xavier, why is what we just heard a good fit for Cloud28+? How do you fit in to make hybrid clouds possible across different many regions?

Poisson

Poisson: HPE has invested a lot in intellectual property in building our own HPE and Microsoft Azure Stack solution. It’s designed to provide the experience of a private cloud while using Microsoft as your technology’s tool.

Our customers want two things. The first is to be able to execute clouds on-premises, but also to connect to wider public clouds. This is enabled by what we are doing with a partner like Equinix. We can jump from on-premises to off-premises for an end-user customer.

The second is, when a customer decides to go to a new architecture around hybrid cloud, they may need to get reach and this reach is difficult now.

So, how we can support partners to find the right place, the right partners at the right moment in the right geographies with the right service level agreements (SLAs) for them to meet their business needs?

The fact that we have Equinix inside of Cloud28+ as a very solid partner is helping our customers and partners to find the right route. If I am an enterprise customer in Australia and I want to reach into Europe, or reach into Japan, I can, through Cloud28+, find the right service providers to operate the service for me. But I will also be hosted by a very compelling co-location company like Equinix, with the right SLAs. And this is the benefit for every single customer.

This has a lot of benefits for our MSPs. Why? Because our MSPs are evolving their technologies, evolving their go-to-market strategies, and they need to adapt. They need to jump from one country to another country, and they need to have a sustainable network to make it all happen. That’s what Equinix is providing.

Learn How Cloud28+ Accelerates
Cloud Adoption Around the Globe

We not only help the end-user customers, but we also help our MSPs to build out their capabilities. Why? We know that with interconnectedness, as was just mentioned, that they can deliver direct cloud connectivity to all of their end users.

Together we can provide choice for partners and end-user customers in one place, which is Cloud28+. It’s really amazing. 

Gardner: What are some of the compelling new use cases, David? What are you seeing that demonstrates where this works best? Who should be thinking about this now as a solution?

Data distribution solutions

Anderson: The solution -- especially combined with Microsoft Azure Stack -- is suited to those regions that have had data sovereignty and regulatory compliance issues. In other words, they can’t actually put their data into the public cloud, but they want to be able to use the power, elasticity, and the compute potential of the public cloud for big data analytics, or whatever else they want to do with that data. And so they need to have that data adjacent to the cloud.

Same for an Azure Stack solution. Oftentimes it will be in situations where they want to do DevOps. The developers might want to develop in the cloud, but they are going to bring it down to a private Azure Stack installation because they want to manage the hardware themselves. Or they actually might want to run that cloud in a place where public Azure may not yet have an availability zone. That could be sub-Saharan Africa, or wherever it might be -- even on a cruise ship in the middle of the ocean.

There's a lot of legacy hardware out there. The need is for applications to run on a cloud, but the hardware can't be virtualized. These workloads could be moved to Equinix and then connect to a cloud.

Another use case that we are driving hard right now with Microsoft, HPE, and Cloud28+ is on the idea of an enterprise cage, where there is a lot of legacy hardware out there. The need is for applications to run to some degree on a cloud, but the hardware can’t be virtualized. But these workloads could be moved to an Equinix data center and connected to the cloud. They can then use the cloud for the compute part, and all of a sudden they are still getting value out of that legacy hardware, in a cloud environment, in a distributed environment.

Other areas where this is of value include a [data migration] appliance that is shipped out to a customer. We’ve worked a lot with Microsoft on this. The customer will put up to 100 TB of data on the appliance. It then gets shipped to one of our data centers where it’s hooked up through high-speed connection to Azure and the data can be ingested into Azure.

Now, that’s a onetime thing, but it gives us and our service providers on Cloud28+ the opportunity to talk to customers about what they are going to do in the cloud and what sort of help might you need.

Scenarios like that provide an opportunity to learn more about what enterprises are actually trying to do in the cloud. It allows us then to match up the service providers in our ecosystem, which is what we use Cloud28+ for with enterprise customers who need help.

Gardner: Xavier, it seems like this solution democratizes the use of hybrid clouds. Smaller organizations, smaller MSPs with a niche, with geographic focus, or in a vertical industry. How does this go down market to allow more types of organizations to take advantage of the greatest power of hybrid cloud?

Hybrid cloud power packaged

Poisson: We have packaged the solutions together with Equinix by default. That means that MSPs can just cherry pick to provide new cloud offerings very quickly.

Also, as I often say, the IT value chain has not changed that much. It means that if you are a small enterprise, let’s say in the United States, and you want to shape your new generation of IT, do you go directly to a big cloud provider? No, because you still believe in your systems integrator (SI), and in your value-added reseller (VAR).

Interestingly, when we package this with Equinix and Microsoft, having this enterprise cage, the VARs can take the bull by the horns. Because, when the customer comes to them and says, “Okay, what should I do, where should put my data, how can I do the public cloud but also a private cloud?” The VAR can guide them because they have an answer immediately -- even for small- to medium-sized (SMB) businesses.

Learn How Cloud28+ Accelerates
Cloud Adoption Around the Globe

Our purpose at Cloud28+ is to explain all of this through thought leadership articles that we publish -- explaining the trends in the market, explaining that the solutions are there. You know, not a lot of people know about Equinix. There are still people who don’t know that they can have global reach.

If you are a start-up, for example, you have a new business, and you need to find MSPs everywhere on the globe. How you do that? If you go to Cloud28+ you can see that there are networks of service providers or learn what we have done with Equinix. That can empower you in just a few clicks.

We give the access to partners who have been publishing more than 900 articles in less than six months on various topics such as security, big data, interconnection, globalization, artificial intelligence (AI), and even the EU’s General Data Protection Regulation (GDPR). They learn and they find offerings because the articles are connected directly to those offering services, and they can get in touch.

We are easing the process -- from the thought leadership, to the offerings with explanations. What we are seeing is that the VARs and the SIs are still playing an enormous role. 

So, it’s not only Microsoft, with HPE, and with the data centers of Equinix, but we put the VARs into the middle of the conversation. Why? Because they are near the SMBs. We want to make everything as simple as you just put in your credit card and you go. That’s fair enough for some kinds of workloads.

But in most cases, enterprises still go to their SIs and their VARs because they are all part of the ecosystem. And then, when they have the discussion with their customers, they can have the solution very, very quickly.

Gardner: Seems to me that for VARs and SIs, the cloud was very disruptive. This gives them a new lease on life. A middle ground to take advantage of cloud, but also preserve the value that they had already been giving.

Take the middle path

Poisson: Absolutely. Integration services are key, application migrations are key, and security topics are very, very important. You also have new areas such as AI and blockchain technologies.

For example, in Asia-Pacific and Europe, Middle East and Asia (EMEA), we have more-and-more tier-two service providers that are not only delivering their best services but are now investing in practices around AI or blockchain -- or combine them with security -- to upgrade their value propositions in the market.

For VARs and for Sis, it is all benefit because they know that solutions exist, and they can accompany their customers to the transition. For them, this is all also a new flow of revenue.

Gardner: As we get the word out that these distributed hybrid cloud solutions are possible and available, we should help people understand which applications are the right fit. What are the applications that work well in this solution?

The hybrid solution gives SIs, service providers, and enterprises more flexibility than if they try and move an application completely into the cloud.

Anderson: The interesting thing is that applications don’t have to be architected in a specific way, based on the way we do hybrid solutions. Obviously, the apps have to be modern.

I go back to my engineering days 25 years ago, when we were separating data and compute and things like that. If they want to write a front-end and everything in platform-as-a-service (PaaS) on Azure and then connect that down to legacy data, it will work. It just works.

The hybrid situation gives SIs, service providers, and enterprises more flexibility than if they try and move an application, whatever it is, completely into the cloud, because that actually takes a lot more work.

Some service providers believe that hybrid is a transitory stage, that enterprises would go to hybrid just to buy them time till they go fully public cloud. I don’t believe Microsoft thinks that way, and we certainly don’t think that way. I think there is a permanent place for hybrid cloud.

In fact, one of the interesting things when I first got to Equinix was that we had our own sellers saying, “I don’t want to talk to the cloud guys. I don’t want them in our data centers because they are just going to take my customers and move them to the cloud.”

The truth of the matter is that demand for our data centers has increased right along with the increase in public cloud consumption. So it’s a complementary thing, not a substitution thing. They need our data centers. What they are trying to do now is to close their own enterprise data centers.

And they are getting into Equinix and finding out that the connectivity possibilities and -- especially in the Global 2000 enterprises -- nobody wants cloud vendor lock-in. They are all multicloud. Our Equinix Cloud Exchange Fabric solution is a great way to get in at one point and be able to connect to multiple cloud providers from right there.

It gives them more flexibility in how they design their apps, and also more flexibility in where they run their apps.

Gardner: Do you have any examples of organizations that have already done this? What demonstrates the payoffs? When you do this well, what do you get for it?

Cloudify your networks

Anderson: We have worked with customers in these situations where they have come in initially for a connection to Microsoft, let’s say. Then we brought them together with a service provider and worked with them on network transformations to the point where they have taken their old networks – a lot of Multiprotocol Label Switching (MPLS) and everything else that were really very costly and didn’t perform that well -- and ended up being able to rework their networks. We like to say they cloudify their networks, because a lot of enterprise networks aren’t really ready for the heavy load of getting out to the cloud.

And we ended up increasing their performance by up to 10, 15, 20 times -- and at the same time cut their networking costs in half. Then they can turn around and reinvest that in applications. They can also then begin to spin up cloud apps, and just provision them, and not have to worry about managing the infrastructure.

They want the same thing in a hybrid world, which is where those service providers that we find on Cloud28+ and that we amplify, come in. They can build those managed services, whether it’s a managed Azure Stack offering or anything else. That enables the enterprise IT shops to essentially do the same thing with hybrid that they are doing with public cloud – they can buy it on a consumption model. They are not managing the hardware because they are offloading that to someone else.

Learn How Cloud28+ Accelerates
Cloud Adoption Around the Globe

Because they are buying all of their stuff in the same model -- whether it’s considered on-premises or a third-party facility like ours, or a totally public cloud. It’s the same purchasing model, which is making their procurement departments happy, too.

Gardner: Xavier, we have talked about SIs, VARs, and MSPs. It seems to me that for who we used to call independent software vendors (ISVs), the former packaged software providers, that this hybrid cloud model also offers a new lease on life. Does this work for the applications providers, too?

Extend your reach

Poisson: Yes, absolutely. And we have many, many examples in the past 12 months of ISVs, software companies, coming to Cloud28+ because we give them the reach.

Lequa AB, a Swedish company, for example, has been doing identity management, which is a very hot topic in digital transformation. In the digital transformation you have your role when you speak to me, but in your other associations you have another role. The digital transformation of these roles needs to be handled, and Lequa has done that.

And by partnering with Cloud28+, they have been able to extend their reach in ways they wouldn’t ever have otherwise. Only in the past six months, they have been in touch with more than 30 service providers across the world. They have already closed deals.

If I am only providing baseline managed information services, how can I differentiate from the hyperscale cloud providers? MSPs now care more about the applications to differentiate themselves in the market.

On one side of the equation for ISVs, there is a very big benefit -- to be able to reach ready-to-be-used service providers, powered by Equinix in many cases. For the service providers, there is also an enormous benefit.

If I am only providing baseline managed information services, how can I differentiate from the hyperscale cloud providers? How can I differentiate from even my own competitors? What we have seen is that the MSPs are now caring more about the application makers, the former ISVs, in order for them to differentiate in the market.

So, yes, this is a big trend and we welcome into Cloud28+ more and more ISVs every week, yes.

Gardner: David, another concern that organizations have is as they are distributing globally, as there are more moving parts in a hybrid environment, things become more complex. Is there something that HPE is doing with new products like OneSphere that will help? How do we allow people to gain confidence that they can manage even something that’s a globally distributed hybrid set of applications?

Confident connections in global clouds

Anderson: There are a number of ways we are partnering with HPE, Microsoft, and others to do that. But one of the keys is the Equinix Cloud Exchange Fabric, where now they only have to manage one wire or fiber connection in a switching fabric. That allows them to spin up connections to virtually all of the cloud providers, and span those connections across multiple locations. And so that makes it easier to manage.

The APIs that drive the Equinix Cloud Exchange Fabric can be consumed and viewed with tools such as HPE OneSphere to be able to manage everything across the solution. The MSPs are also having to take on more and be the ones that provide management.

As the huge, multinational enterprises disperse their hybrid clouds, they will tend to view those in silos. But they will need one place to go, one view to look at, to know what’s in each set of data centers.

At Equinix, our three pillars are the ideas of being able to reach everywhere, interconnect everything, and integrate everything. That idea says we need to be the place to put that on top of HPE with the service providers because then that gives you that one place that reaches those multiple clouds, that one set of solid, known, trusted advisors in HPE and the service providers that are really certified through Cloud28+. So now we have built this trusted community to really serve the enterprises in a new world.

Gardner: Before we close out, let’s take a look into the crystal ball. Xavier, what should we expect next? Is this going to extend to the edge with the Internet of Things (IoT), more machine learning (ML)-as-a-service built into the data cloud? What comes next?

The future is at the Edge

Poisson: Today we are 810 partners in Cloud28+. We cover more than 560 data centers in more than 34 countries. We have been publishing nearly 30,000 cloud services in only two years. You see how fast it has been growing.

What do we expect in the future? You named it: Edge is a very hot topic for us and for Equinix. We plan to develop new offering in this area, even new data center technology. It will be necessary to have new findings around what a data center of tomorrow is, how it will consume energy, and what we can do with it together.

We are already engaged in conversations between Equinix, ourselves, and another company within the Cloud28+ community to discuss what the future data center could be.

A huge benefit of having this community is that by default we innovate. We have new ideas because it's coming through all of the partners. Yes, edge computing is definitely a very hot spot.

For the platform itself, I believe that even though we do not monetize in the data center, which is one of the definitions of Cloud28+, the revenues at the edge are for the partners, and this is also by design.

Nonetheless, we are thinking of new things such as a smart contracting around IoT and other topics, too. You need to have a combination of offerings to make a project. You need to have confidentiality between players. At the same time, you need to deliver one solution. So next it may be solutions on best ways for contracting. And we believe that blockchain can add a lot of value in that, too.

Cloud28+ is a community and a digital business platform. We are thinking of such things as smart contracting for IoT and using blockchain in many solutions.

Cloud28+ is a community and a digital business platform. By the way, we are very happy to have been recognized as such by Gartner in several research notes since September 2017. We want to start to include these new functions around smart contracting and blockchain.

The other part of the equation is how we help our members to generate more business. Today we have a module that is integrated into the platform to amplify partner articles and their offerings through social media. We also have a lead-generation engine, which is working quite well.

We want to launch an electronic lead-generation capability through our thought leadership articles. We believe that if we can give the feedback to the people filling in these forms, with how they position versus all of their peers, on how they position versus the industry analysts, they will be very eager to engage with us.

And the last piece is we need to examine more around using ML across all of these services and interactions between people. We need to deep dive on this to find what value we can bring from out of all this traffic, because we have such traffic now inside Cloud28+ that trends are becoming clear.

Learn How Cloud28+ Accelerates
Cloud Adoption Around the Globe

For instance, I can say to any partner that if they publish an article on what is happening in the public sector today, it will have a yield that is x-times the one that has been published at an earlier date. All this intelligence, we have it. So what we are packaging now is how to give intelligence back to our members so they can capture trends very quickly and publish more of what is most interesting to the people.

But in a nutshell, these are the different things that we see.

Gardner: And I know that evangelism and education are a big part of what you do at Cloud28+. What are some great places that people can go to learn more?

Poisson: Absolutely. You can read not only what the partners publish, but examine how they think, which gives you the direction on how they operate. So this is building trust.

For me, at the end of the day, for an end-user customer, they need to have that trust to know what they will get out of their investments.

Gardner: I’m afraid we will have to leave it there. We have been exploring how the triumvirate of a global data center hosting company, a hybrid cloud platform provider, and a global cloud community are solving some of the most vexing problems for bringing high-performance clouds to more regions around the globe. And we have learned how new breeds of hybrid cloud solutions are allowing more users to attain world-class cloud services nearly anywhere.

So please join me in thanking our guests, David Anderson, Global Alliance Director at Equinix for its Microsoft Alliance. Thank you, David.

Anderson: Thank you, Dana. It’s been a pleasure.

Gardner: We have also been here with Xavier Poisson, Vice President of Worldwide Service Providers Business and Cloud28+ at HPE. Thank you, sir.

Poisson: Thank you, Dana. A pleasure.

Gardner: And a big thank you as well to our audience for joining us for this BriefingsDirect Voice of the Customer digital transformation success story discussion.

I'm Dana Gardner, Principal Analyst at Interarbor Solutions, your host for this ongoing series of Hewlett Packard Enterprise sponsored interviews. Thanks again for listening. Please pass this along to your own IT community, and do come back next time.

Listen to the podcast. Find it on iTunes. Get the mobile app. Download the transcript. Sponsor: Hewlett Packard Enterprise. 

Transcript of a discussion on how Equinix, Microsoft Azure Stack, and Cloud28+ together are advancing and extending hybrid cloud options across the globe. Copyright Interarbor Solutions, LLC, 2005-2018. All rights reserved.

You may also be interested in:

• Ryder Cup provides extreme use case for managing the digital edge for 250K mobile golf fans
• HPE and Citrix team up to make hybrid cloud-enabled workspaces simpler to deploy
• Citrix and HPE team to bring simplicity to the hybrid core-cloud-edge architecture
• New strategies emerge to stem the costly downside of complex cloud choices
• Huge waste in public cloud spend sets stage for next wave of total cloud governance decisions, says 451’s Fellows
• GDPR forces a rekindling of people-centric approach to marketing and business
• Path to modern PC client automation is paved with hyperconverged infrastructure for New Jersey college
• How HPE and Docker together accelerate and automate hybrid cloud adoption

How MSPs Leverage Bitdefender’s Layered Approach to Security for Comprehensive Client Protection

Transcript of a discussion on how managed service providers are building better security postures to help small- to medium-sized businesses and enterprises best manage and protect their customers’ end devices and workspaces.

Listen to the podcast. Find it on iTunes. Get the mobile app. Download the transcript. Sponsor: Bitdefender. 

Dana Gardner: Welcome to the next edition of the BriefingsDirect  podcast series, now in its 13th year. I’m Dana Gardner, Principal Analyst at Interarbor Solutions, your host and moderator.

Gardner

As solving security concerns has risen to the top of the requirements list for just about everyone, service providers in particular have had to step up their game. Because just as cloud models and outsourcing of more data center functions have become more popular, the security needs across cloud models have grown even more fast-paced and pressing.

As small- to medium-sized businesses (SMBs) have turned to managed service providers (MSPs) to be in effect their IT departments, they are also seeking those MSPs to serve as their best defenses against security risks.

Today’s BriefingsDirect security insights discussion examines how MSPs are building better security postures from their networks and data centers. Here to discuss the role of the latest security technology in making MSPs more like security services providers is Brian Luckey, Director of Managed Services at All Covered, IT Services from Konica Minolta, in Ramsey, New Jersey. Welcome, Brian.

Brian Luckey: Thank you for having me.

Gardner: We are also joined by Jeremy Wiginton, Applications Administrator, also at All Covered, IT Services from Konica Minolta. Welcome, Jeremy!

Jeremy Wiginton: Thank you.

Gardner: What are some of the trends that have been driving the need for MSPs like yourselves to provide even more and better security solutions?

Managing security expectations

Luckey: As MSPs, we are expected, especially for SMBs, to cover the entire gamut when it comes to managing or overseeing an organization’s IT function. And with IT functions come those security services.

It’s just an expectation at this point when you are managing the IT services for our clients. They are also expecting that we are overseeing the security part of that function as well.

Gardner: How has this changed from three to five years ago? What has changed that makes you more of a security services provider?

Luckey

Luckey: A major driver has been the awareness of needing heightened security. So all of the news, the different security breach events -- especially over the last 12 months, let alone the last couple of years -- with WannaCry and Petya.

Now, not only companies but the owners and executives are more in tune with the risks. This has sparked more interest in making sure that they are protected and feel like they are protected. This has all definitely increased the need for MPSs to provide these IT services.

Gardner: As we have had more awareness, more concerns, and more publicity, then the expectations are higher.

Jeremy, what are some of the technical advances that you feel are most responsible for allowing you as an MSP to react better to these risks?

Wiginton: The capability for the fast analytics, the fast reporting, and the fast responses that we can get out of the products and solutions that we use helps tremendously in making sure that our clients are well-protected and that security -- any security issues that might pop up -- are mitigated very, very quickly.

Gardner: The role of compliance requirements has also risen. Are your clients also seeking more security and privacy control around such things as the Health Insurance Portability and Accountability Act (HIPAA) or Payment Card Industry Data Security Standard (PCI DSS) and nowadays the General Data Protection Regulation (GDPR)?

Tools and regulations

Luckey: Oh, absolutely. We provide IT services to a variety of different industries like the financial industry, insurance, and health care. In those industries, they have high regulations and compliance needs, which are growing more and more. But there are also companies that might not fall into those typical industries yet have compliance needs, too -- like PCI and GDPR, as you mentioned.

Gardner: As Jeremy mentioned, speed is critical here. What’s been a challenge for organizations like yours to react to some of these issues -- be it security or compliance?

Luckey: That’s a great question. There are a couple of things. One is technology; having the right technology that fits not only our business needs, but also our clients' needs. That’s a huge impact for us -- being able to provide the right service and the right fit.

But also integration points are important. Disparate systems that don’t integrate well or work well together can be a difficulty for us to service our clients inappropriately. If we have internal chaos, how can we provide a great service to our clients?

The proper progression and adoption of services and solutions is also key. We are in a technological world, for sure, and as technology progresses it only gets better, faster, cheaper, and smarter. We need to be able to use those solutions and then pass along the benefits to our clients.

Gardner: Jeremy, we have been speaking generally about data center services, IT services, but what about the applications themselves? Is there something specific to applications hosting that helps you react more quickly when it comes to security?

Quick reactions

Wiginton: Most assuredly. A lot of things have been getting bloated. And when things get bloated, they get slowed down, and clients don’t want them on their machines -- regardless of how it impacts their security.

So being able to deliver a modern security product that is lightweight, and so fast that the clients don’t even notice it, is essential. These solutions have come a long way compared to when you were constantly doing multiple things just to keep the client happy and having to compromise things that you may not have wanted to compromise.

Gardner: It wasn't that long ago that we had to make some tough trade-offs between getting security, but without degrading the performance. How far do you think we have come on that? Is that something that's essentially solved nowadays?

Being able to deliver a modern security product that is lightweight, and so fast that the clients don't even notice it, is essential. These solutions have come a long way.

Wiginton: For the most part, yes. We have a comprehensive solution, where one product is doing the job of many, and the clients still don't notice.

Gardner: Tell us more, Brian, about All Covered. You have 1,200 employees and have been doing this since 1997. What makes you differentiated in the MSP market?

Longevity makes a difference 

Luckey: We have been around a long time. I think our partnership and acquisition by Konica Minolta many years ago has definitely been a huge differentiator for us. Being focused on the office workplace of the future and being able to have multiple different technologies that serve an organization’s needs is definitely critical for us and the differentiating factor.

We have been providing computing and networking services, and fulfilling different application needs across multiple vertical industries for a long time, so it makes us one of the major MSP and IT players.

Gardner: But, of course Konica Minolta is a global company. So you have sister properties, if you will, around the globe?

Luckey: That is correct, yes.

Gardner: Let's find out what you did to solve your security and performance issues and take advantage of the latest technology.

Luckey: We set out to find a new endpoint security vendor that would meet the high demands of not only our clients, but also our internal needs as well to service those clients appropriately.

We looked at more than a dozen different solutions covering the endpoint security marketplace. Over about six months we narrowed it down to the final three and began initial testing and discussions around what these three endpoint security vendors would do for us and what the success factors would look like as we tested them.

We eventually choose Bitdefender Cloud Security for MSPs.

Gardner: As an MSP, you are concerned not only with passing along great security services, but you have to operate on a margin basis, and take into consideration how to cut your total cost over time. Was there anything about the Bitdefender approach that's allowed you to reduce man hours or incidents? What has been impactful from an economic standpoint, not just a security posture standpoint?

A streamlined security solution 

Luckey: Bitdefender definitely helped us with that. Our original endpoint security solution involved three different solutions, including an anti-malware solution. And so just being able to condense those into one -- but still providing the best protection that we could find -- was important to us. That’s what we found with Bitdefender. That definitely saved us some costs from the reduction of overall number of solutions.

But we did recognize other things in choosing Bitdefender, like the reduction of incidents; I think we reduced them by about 70 percent. That translated into a reduction of people and manpower needed to address issues. That, too, was a big win for us. And having such a wide diversity of clients -- and also a large endpoint base -- those were big wins for us when it came down to choosing Bitdefender.

Gardner: Jeremy, we’re talking about endpoint security, and so that means the movement of software. It means delivery of patches and updates. It means management of those processes. What was it about Bitdefender along the logistical elements of getting and keeping the security in place.

Bitdefender definitely helped us. It saved us costs due to the reduction of the overall number of solutions. We had a reduction of incidents, a 70 percent reduction.

Wiginton: Having everything managed, a single pane of glass interface for the endpoint security side, that has saved a ton of time. We are not having to go look in three different places. We are not having to deal with some of our automated things that are going on. We are not having to deal with two or three different APIs to try and get the same information or to try and populate the same information.

We have one consistent product to work with, a product that, as Brian said, has cut down on the number of things that come across our desks by at least 70 percent. The incidents still occur, but they are getting resolved faster and on a more automated basis with Bitdefender than they were in the past with our other products.

Gardner: Brian, where you are in your journey of this adoption? Are you well into production?

Luckey: We are well into the journey. We chose Bitdefender in mid-2016, and we were deployed in January 2017. It's been about a year-and-a-half now, and still growing.

We have grown our endpoints by about 30 percent from the time that we originally went live. Our business is growing, and Bitdefender is growing with us. We have continued to have success and we feel like we have very good protection for our clients when it comes to endpoint security.

Gardner: And now that you have had that opportunity to really evaluate and measure this in business terms, what about things like help desk, remote patch management, reporting? Are these things that have changed your culture and your business around security?

Reporting reaps rewards

Luckey: Yes, absolutely. We have been able to reduce our incidents, and that’s obviously been a positive reflection on the service desk and help desk on taking calls and those type of issues.

For patching, we have a low patch remediation rate, which is great. I’m sure that Bitdefender has been a strong reflection on that.

And for reporting, it's big for us. Not only do we have more in-depth and detailed reporting for our clients, but we also have the capability to give access to our clients to manage their own endpoints, as well as to gain reports on their own endpoints.

Gardner: You’re able to provide a hybrid approach, let them customize -- slice and dice it the way they want for those larger enterprise clients. Tell us how Bitdefender has helped you to be a total solution provider to your SMB clients?

Luckey: Endpoint security has become a commodity business. It’s one of those things you just have to do. It’s like a standard requirement. And not having to worry about our standard offerings, like endpoint security -- we just know it works, we know how it works, we are very comfortable on how it works, and we know it inside and out. All of that makes life easier for us to focus on the other things, such as the non-commodity businesses or the more advanced items like security information management (SIM) and manage unified threat management (UTM).

Gardner: What now can you do now with such value-added services that you could not do before?

Luckey: We can focus more on providing the advanced types of services. For example, we recently acquired a [managed security services and compliance consulting] company, VioPoint, that focuses solely on security offerings. Being able to focus on those is definitely key for us.

Gardner: Jeremy, looking at this through the applications lens again, what do you see as the new level of value-added services that you can provide?

Fewer fires to extinguish 

Wiginton: We are bringing in and evaluating Bitdefender technologies such as Full Disk Encryption. It has been a nice little product. I have done some testing with it, they let me in on their beta of it, which was really nice. It’s really easy to use.

Also, [with Bitdefender], because there's a lot less remediation needed on security incidents, we have seen a great drop in things like ransomware. As a result, I am able to focus more on making sure that our clients are well protected and making sure that the applications are working as intended -- as opposed to having to put out a fire because the old solution let something in that it shouldn’t have.

Gardner: It’s been great to talk about this in the abstract, but it's very powerful too if we can get more concrete examples.

Do you have any use cases for your MSP endpoint security and management capabilities that you can point to?

When we rolled out Bitdefender to replace older security systems for a client, their business stopped. Malware was newly discovered. The previous solutions did not catch that.

Luckey: The one that comes to mind, and always sticks with me, is a legal client of ours. When we rolled out Bitdefender to replace the older security solutions they had, their business stopped. And the reason their business stopped is there was malware being detected, and we couldn’t find out where it was coming from.

After additional research, we found that their main application to manage their clients and to manage billing -- basically to run their business -- the executable file that they would take and copy and actually install that application on every desktop, that had malware in it.

The previous solutions didn’t catch that. Every time they were deploying this application to new users, or if they had to redeploy it, they were putting malware on every machine, every time. We weren't able to detect it until we had Bitdefender deployed. Once Bitdefender detected it, it stopped the business, which is not good. The better part was that we were able to detect the malware that was being spread across the different machines.

That’s one example that I always remember because that was a big deal, obviously by stopping the business. But the most important part was that we were able to detect malware and protect that company better than they had been protected before.

Gardner: The worst kind of problem is not knowing what you don’t know.

Luckey: Exactly! Another example is a large client that has many remote offices for its dental services, all across the US. Some offices had spotty Internet access, so deploying Bitdefender was challenging until we used Bitdefender Relay. And Relay allowed us to deploy it once to the company and then deploy most of the devices with one deployment, instead of having to deploy one agent at a time.

And so that was a big benefit that we didn’t have in the past. Being able to deploy it once and then have all the other machines utilize that Relay for the deployments made it a lot easier and a lot faster due to the low bandwidth that was available in those locations.

Wiginton: We had a similar issue at a company where they would not allow their servers to have any Internet access whatsoever. We were able to set up a desktop as the Relay and get the servers connected to the Relay on the desktop to be able to make sure that their security software was up-to-date and checking in. It was still able to do what it was supposed to, as opposed to just sitting there and then alerting whenever its definitions became out of date because it didn't have Internet access.

Gardner: Let’s look to the future and what comes next. We have heard a lot about encryption, as you mentioned, Jeremy. There's also a of research and development being done into things like machine learning (ML) to help reduce the time to remediation and allow the security technology to become more prescriptive, to head things off before they become a problem.

Brian, what are you looking for next when it comes to what suppliers like Bitdefender can do to help you do your job?

Future flexibility and functionality 

Luckey: We have already begun testing some of the newer functionality being released to the Bitdfender MSP Cloud Security suite this month. We are looking into the advanced security and ML features, and some new functionality they are releasing. That’s definitely our next approach when it comes to the next generation of the Bitdefender agent and console.

And in addition to that, outside of Bitdefender, we are also expanding the services from our new security acquisition, VioPoint, and consolidating those to provide best-in-class security offerings to our clients.

Gardner: Jeremy, what entices you about what's coming down the pike when it comes to helping to do your job better?

Wiginton: I’m really looking forward to Bitdefender’s Cloud, which allows us a lot more flexibility because we are not having to allocate our own internal resources to try and do the analytics. So their Sandbox Analyzer and things that are coming soon really do interest me a lot. I am hoping that that will further chop down the number of security incidents that come across our desk.

Gardner: What would you suggest in hindsight, now that you have made a big transition from multiple security providers to more of a consolidated comprehensive approach? What have you learned that you could share with others who are maybe not quite as far along in the journey as you?

Testing, testing

Luckey: Number one is testing. We did a pretty good job of testing. We took a three-pronged approach of internal, external, and then semi-internal, so our help desk folks. Make sure that you have a comprehensive test plan to test out how many bad guys are being protected, what kind of malware is being blocked, and the functionality. That's the big one … test, test, and test some more.

Choosing the right partner and the right vendor, if you will, is key. I believe in having partners instead of just vendors; vendors just supply products, but partners work together to be successful.

It’s kind of like dating, date the right partner until you find the right one -- and Bitdefender has definitely been a great partner for us.

Otherwise, have your requirements set up for what success looks like, those are all important. But the testing -- and making sure you find the right partner – those were key for us. Once we knew what we wanted, the rest of it fell into place.

It's kind of like dating. Date the partners until you find the right one -- and Bitdefender has definitely been a great partner for us. Once we knew what we wanted, the rest fell into place.

Gardner: Jeremy, from your perspective, what advice could you give others who are just starting out?

Wiginton: Make sure that you are as thorough as possible in your testing, and get it done sooner rather later. The longer you wait, the more advanced threats are going to be out there and the less likely you are going to catch them on an older solution. Do your homework and you have to be on the ball with it.

Gardner: I’m afraid we’ll have to leave it there. You have been listening to a sponsored BriefingsDirect discussion on how small to medium-sized businesses have increasingly turned to managed service providers to be among their greatest defenses against the latest security risks.

And we’ve learned how new and increasingly intelligent security technologies from such vendors as Bitdefender are making MSPs more like SSPs for their clients. Please join me now in thanking our guests, Brian Luckey, Director of Managed Services at All Covered in Ramsey, New Jersey. Thank you, Brian.

Luckey: Thanks for having me.

Gardner: And we have been here with Jeremy Wiginton, Applications Administrator at All Covered. Thank you so much, Jeremy.

Wiginton: Thank you, very much.

Gardner: I’m Dana Gardner, Principal Analyst at Interarbor Solutions, your host and moderator for this ongoing series of BriefingsDirect discussions.

A big thank you also to our sponsor, Bitdefender, for supporting these presentations. A big thank you as well to our audience for joining. Please pass this on to your IT community, and do come back next time.

Listen to the podcast. Find it on iTunes. Get the mobile app. Download the transcript. Sponsor: Bitdefender. 

Transcript of a discussion on how managed service providers are building better security postures to help small- to medium-sized businesses and enterprises best manage and protect their customers’ end devices and workspaces. Copyright Interarbor Solutions, LLC, 2005-2018. All rights reserved.

You may also be interested in:

• How a large Missouri medical center developed an agile healthcare infrastructure security strategy
• Kansas Development Finance Authority gains peace of mind, end-points virtual shield using Hypervisor-level security
• How IT innovators turn digital disruption into a business productivity force multiplier
• How a Florida school district tames the Wild West of education security at scale and on budget
• The next line of defense—How new security leverages virtualization to counter sophisticated threats
• Cybersecurity standards: The Open Group explores security and safer supply chains
• How the Citrix Technology Professional Program Produces User Experience Benefits from Greater Ecosystem Collaboration
• DevOps and Security, a Match Made in Heaven