By Tim Singleton, Strive Technology Consulting and ASCII Group Member
Managed Service Providers have been in the press a lot lately, and not in a good way. Cybercriminals have realized that the MSPs are a single point of entry into hundreds of poorly secured small and medium businesses (SMB’s), and come with fully functional remote access remote script execution to make their lives easier.
How do MSPs best protect themselves from cyberattacks? NIST has released a cybersecurity framework that provides a great illustration of how to think about security, for companies in any industry.
Identify all the equipment and services that you have and its function and importance. Do not skip this step
, believing you already know your environment. Not every component needs the same level of security. Your website is going to need different security measures than your RMM. Workstations will need to be treated differently than cloud services. By identifying all assets in your organization, you ensure nothing gets forgotten or under-secured.