One of the main challenges for MSPs (Managed Service Providers), CSPs (Cloud Service Providers) and MSSPs (Managed Security Service Providers) are the SHARED SECURITY MODEL.
This shared security responsibility depends on the service required by the customer - but it doesn't remove the fact that the 'customer' has a responsibility for larger or smaller portions of the security.
In the above figure the left side (blue) represents the customers security responsibility for their data, applications etc. operating in the cloud. The right side (orange) represents the service providers responsibility for the security of the software & hardware they use, that its maintained properly, physical access, staff etc.
Another fact is that MANY Cyber-security professionals see "cloud-services" as UNSECURE due to the lack of control with the environment. To an extend they are absolutely right, but here at ZAFEHOUZE, we have done something about it.
With ZafePass the Service Provider - can now take full responsibility for the security also on the customer side. Its possible due to the design and architecture of ZafePass and the ability for the Service Provider to control, deploy and manage any user access and their entitled resources from their side.
This means a Service Provider can operate a customer environment in the same way as the good old legacy mainframes where users got accessed via a terminal. The difference is that users today has many devices, work from many locations and is in hostile environments most of the time.
ZafePass solve this by encapsulating the user (and the device) in a way the user and device is not included in the 'trusted zone' immune to many types of attacks.
Service Providers now have the possibility to completely run outsourced services including the full security stack and has full control from their service and management side.