Anomali launches MSSP programme for enhanced cyber security in ANZ
Anomali has rolled out a managed security service provider (MSSP) programme for Australia and New Zealand, aiming to simplify and enhance how MSSPs deliver cybersecurity services for their clients.
The new offering combines multi-tenant management and an open security data lake architecture to address long-standing operational hurdles faced by providers in the region.
Operational challenges
Many MSSPs in Australia and New Zealand currently rely on separate system instances or manual data transfers to service clients.
These approaches are often inefficient, expensive, and present barriers to scalability. The multi-tenant platform from Anomali allows MSSPs to manage and analyse security data from all clients within a single environment, without requiring data to be merged or exported manually.
This approach preserves data control and compliance with privacy requirements.
Unified data lake
The programme leverages an open security data lake, allowing MSSPs to combine telemetry, threat intelligence, and analytics across multiple clients. Key components, including ThreatStream and Security Analytics, are integrated, so providers can manage threat feeds and observables through a centralised interface.
Customers' data can remain in storage controlled either by the customer or the MSSP, supporting long-term retention and compatibility with various security tools.
AI integration
Anomali has embedded agentic artificial intelligence into its platform. The AI capabilities enrich alerts, prioritise threats, and provide contextual insights specific to each client within multi-tenant environments. Anomali Copilot, a core feature, examines data across customer environments to assist analysts in making informed decisions more quickly and efficiently.
Business benefits
The programme's design supports scalable growth, allowing MSSPs to expand their managed services to new clients efficiently while maintaining data sovereignty, security, and compliance.
Providers gain the ability to store more than seven years' worth of security data in hot storage, fulfilling extended compliance requirements and improving incident investigation processes.
The use of centralised analytics means that security teams can reduce time spent on manual investigations. During security incidents affecting multiple clients, MSSPs are able to quickly identify which customers are impacted, accelerate their response, and issue tailored reporting as required by regulators or clients.
Automation and efficiency
The integration of automation into security operations centres (SOCs) aims to amplify the capacity of security analysts. By automating complex threat analysis and reasoning, operators can reduce their response times to threats. The underlying open platform also allows MSSPs to select between different data lake configurations to best meet specific customer governance requirements.
Provider support
Flexibility is another aspect of the new programme, with support for open standards that enable integration with a wide range of security solutions. Providers are not locked into a specific ecosystem, and can adapt their implementation as business or regulatory needs change.
"Our MSSP Programme is built to remove the barriers that have slowed down managed security providers for years. By giving MSSPs an open data lake foundation, we're enabling them to store, retain, and analyse telemetry from multiple customers in one place - without lock-in while maintaining strict data separation. It's about faster insight, smarter operations, and complete trust," said Alexandre Depret-Bixio, Senior Vice President International (EMEA & APJ), Anomali.
