Optimize Revenue

Per-Asset Billing True Ups

Discover all the assets in your clients’ environments so that you can bill accordingly

Example: MSSP was charging by the asset but using the asset count provided by the client, which did not include printers, phones, IOT, or shadow IT. With KeyCaliber’s asset discovery they saw the full asset inventory and were able to bill for all the additional work needed to secure the previously ignored assets.

Initial Assessment Lead-Ins

Show immediate value to clients and prospects with one-time assessments

Example: MSP that had recently launched a cybersecurity offering was finding it challenging to show that it had security expertise. When they began offering KeyCaliber’s Risk & Resilience assessment, they were able to quickly show both value and cybersecurity capabilities.

Upsell and Cross-Sell

Create new service offerings and new reports for clients

Example: MSSP was looking for ways to increase its services for existing clients. With KeyCaliber’s multi-tenancy deployment, they had security and risk posture data for each client so they were able to run analytics across their client base. They were able to generate anonymized peer comparision reports to show clients how well they were doing relative to other companies in their industry.

Optimize Differentiation

Business Context

Demonstrate that you can provide more insight into your clients’ environment than they know themselves

Example: MSSP was competing against an incumbent vendor for a new client. When the MSSP showed the client that they could readily identify the client’s critical assets (“Crown Jewels”) and prioritize vulnerabilities and alerts based on this information, the MSSP was selected by the client.

Optimize Operations

Vulnerability Prioritization

Combine both vulnerability context with business impact context for true risk-based prioritization

Example: MSSP wanted to move away from the standard approach of trying (unsuccessfully) to patch all vulnerabilities with critical or high CVSS scores and move to risk-based vulnerability management. With KeyCaliber’s risk scores that incorporate asset criticality (impact), exploitability data, and the MSSP’s own threat intelligence, the MSSP could prioritize based on real business risk and show added value to their clients.

Alert Prioritization

Enrich alerts with asset context to inform priorities

Example: MSSP was prioritizing alerts across its client base using rudimentary calculations and educated guesses by the SOC analysts. By adding KeyCaliber’s asset data, including asset criticality (impact) and asset connections to enrich its alerts, the SOC was able to prioritize alert investigations across clients and report back to its clients on its rapid response for all alerts involving critical assets.

Solutions that Work for You and Your Clients

  • Snapshot Cyber Assessments

    Automated assessments provide a quick and easy way to determine critical assets, understand current risk and security posture, and get actionable insights on how to improve.

  • Continuous Assessments

    Full deployment allows for ongoing analysis to identify when risks arise due to new assets, coverage gaps, vulnerabilities, etc., and tracks how your program is progressing over time.

  • Multi-Tenant Solution

    Each client receives its own tenant for snapshot and continuous assessments, and analytics can be calculated across tenants to provide peer comparisons.

We are proud to be partnered with outstanding cybersecurity service providers.