The move toward managed security services has some distinct advantages but may also create security gaps for organizations relying on a provider to secure their data. Security services provided by managed security service providers tend to be reactive, especially with regard to threat hunting and information sharing. An MSSP should try to provide a holistic approach to security, with a full range of experience, tools and techniques beyond log monitoring services. An automated system of data extraction and analysis not only takes a sizable workload off the analyst’s plate, but it greatly improves reaction time.
Source: https://www.helpnetsecurity.com/2021/01/19/vetting-mssps/