Posted by Tom Burt, on
Choosing an IT Outsource Firm

Seven considerations when choosing a Managed Service Provider:

  1. Security is more critical than ever. Determine if the provider is SOC certified. SOC certification ensures adequate controls are in place to protect your data and assets. https://www.aicpa-cima.com/home. Be diligent when investigating if a vendor is SOC certified. Even if they appear to be, it is common for a vendor to piggyback on someone else's certification.  Make sure you are dealing directly with a SOC-certified vendor.
     
  2. Look for a LinkedIn link on the provider’s website. Unlike many other professions, anyone can create a website and call themselves an “IT professional.” If there is no LinkedIn link on their website, be cautious. Investigating a vendor's LinkedIn will provide you with the number of employees and their qualifications.
     
  3. Search the provider on Glassdoor and Indeed. This will provide insight into the culture of the company. You can see what current and former employees think about the company. If you can't find the company on Glassdoor, the firm will likely have very few employees.
     
  4. Do a thorough search of the provider's website. If the only employee featured is the owner, it could signify high turnover or a “one-man shop.” It is common in smaller firms for the owner to hold all the credentials.
     
  5. Be diligent in confirming references. References on a vendor’s website are often outdated or irrelevant. Call references and ask about the services pertinent to your needs. Don't limit references to your industry; instead, base your research on the skills and services required.
     
  6. There are all different flavors and types of IT providers. There are national firms, franchises, regional firms, and one-person operations. M&A in the industry is prevalent. Private Equity firms are buying local and regional firms at a fast and furious pace. It is a good idea to know if you will have access to the principals before you enter into a relationship and how that relationship may be impacted if your provider is acquired by another firm.
     
  7. Don't buy based on price. Do the research and exercise sound judgment choosing a provider. IT services are not a commodity, and if you treat them as such, you will end up disappointed.

Share This

Related Posts

business continuity planning
Why Business Continuity Planning is so important?
A business continuity plan should be a common sense document that addresses the specific circumstances and needs of your business.
A boldly colored human silhouette made of intertwining digital networks and circuitry patterns, a metaphor for human identity and data persona. The vibrant orange and purple silhouette prominently stands in the center, arms outward stretching. In the background, grayed cyberwarning symbols subtly loom, representing privacy threats from data breaches and surveillance. Glowing light rays representing knowledge and innovation beam onto the human figure, while its stance confidently faces the danger signs.
Big Data Privacy Issues: Protect Your Data with Advanced Analytics and Security
Big data has become an important part of our everyday lives. Organizations of all kinds and fields are now collecting and analyzing huge amounts of data to learn more about their customers and make better decisions.
Goals of Security Controls
Cybersecurity – Goals of Security Controls
Last month, we discussed the importance of practicing “defense-in-depth” within an organization.
Subscribe to Latest IT News and Alerts