Incident response is one of the 14 requirements outlined in the National Institute of Standards and Technology’s (NIST) Special Publication (SP) 800-171—Protecting Controlled Unclassified Information (CUI) in Nonfederal Information Systems and Organizations, and enforced by the U.S. Department of Defense (DoD). If your organization contracts for the government, you must implement all 14 of these security requirements and controls by December 31, 2017. Simply put, if you do not comply, you risk losing your contracts, costing your organization millions of dollars in lost revenue.
When an IT incident occurs, two important tools can help tell the story. A remote monitoring and management (RMM) platform tells of what has gone wrong at a customer’s site; a professional services automation (PSA) platform explains what was done to fix the issue. The combination of these two solutions allows MSPs to quickly respond to issues. This is particularly crucial in the case of security incidents that could impact the business and jeopardize compliance with applicable laws, particularly the General Data Protection Regulation (GDPR).
With the Global Data Protection Regulation (GDPR) set to be implemented in May 2018, IT consultants and managed services providers (MSPs) have been wondering how the new law will affect them. In many cases, the IT press has treated this new regulation with a mixture of panic and consternation. It certainly makes sense—it’s a new law that requires organizations to step up on their security measures or face potentially hefty fines.
Businesses have become very confident about their cybersecurity with 87% responding that they are 'confident in their cybersecurity preparedness'. But is that confidence misplaced?
Who wouldn’t want the ability to see what will happen in the future? Nowhere is this yearning greater than in the world of cybersecurity, where even a small glimpse of future threats could prevent a disastrous and costly breach. The security industry is looking to move beyond reactive mode and be proactive, automating the response to threats and preventing attacks before they happen.
In light of headline-grabbing attacks, global enterprises and emerging companies alike are looking to engage with trusted advisors who can help them identify the best cybersecurity solutions to protect their critical assets without skyrocketing their costs. It's an excellent opportunity for MSPs to build their cybersecurity practices by implementing a layered, or “multi-vector,” security strategy.
Not only do your clients expect a certain level of quality in the services they receive; they also place a great deal of importance on the individual working relationship. Clients want to know they’re being taken seriously as people, and are being served by MSPs who understand their needs on a personal level.