Business of Tech: Daily 10-Minute IT Services Insights

AI deployment is compressing margins and altering the economic structure of the IT services market, with digital platforms and private equity–backed consulting now determining who controls distribution, interfaces, and downstream value capture. As referenced by Dave Sobel, developments such as large language models reshaping search, IT distributors repositioning as digital marketplaces, and private equity standardizing AI consulting are reducing the role of traditional MSPs to commoditized implementation labor. Concrete market evidence includes the Global Technology Distribution Council’s report citing that 80% of vendors see partner ecosystem growth as key, while 86% are using or testing digital platforms to drive cloud and AI services. Examples such as Anthropic’s discussions to create AI consulting joint ventures with Blackstone and Hellman Friedman, as well as OpenAI’s partnerships with Thrive Holdings and Shield Technology Partners, show that operational models are being standardized and consolidated. Meanwhile, AI-powered search is reducing clicks to original content by up to 89%, transferring value to whoever controls the user interface. Supporting data from surveys conducted by the SMB Group, Pega Systems, and Atlassian highlight that 53% of SMBs are using AI, but only 3% of organizations report measurable business transformation despite a 33% productivity boost. Consumers show distrust in AI-driven customer service, and employee burnout and reduced confidence indicate that MSPs are absorbing increased operational complexity and support burdens even as margins compress. These developments reinforce the channel consolidation and margin repricing mechanisms described above. For MSPs and IT leaders, the practical risks include growing dependency on distributor and vendor digital marketplaces, narrowing ability to influence platform economics, and the transfer of governance obligations without matching margin. Priority areas are building defensible, repeatable governance frameworks around AI, owning escalation and validation paths, and repositioning services toward process redesign engagements—not commoditized tool deployment. Failing to establish an IP or governance wedge may result in MSPs being locked into subcontractor roles with little leverage over pricing or client outcomes. Three things to know today: 00:00 Channel Bypassed 02:26 Delivery Commoditized 04:15 MSPs Left Holding 07:12 Why Do We Care?  Supported by:  ScalePadSmall biz Thought Community      💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

The dominant structural mechanism highlighted is the industry-wide shift toward liability transfer and governance gaps in AI procurement, deployment, and incident response. According to Dave Sobel, both vendors and organizations are accelerating AI adoption without corresponding investments in oversight, training, or clear accountability structures. This is reflected across multiple sectors, from software vendors such as Grammarly, Eightfold.ai, Cohesity, and Rubrik, to business leaders and policymakers, where risk is systematically deferred downstream rather than managed at the point of adoption. The most consequential evidence is the quantitative disconnect between stated AI priorities and functional oversight. Research cited by Dave Sobel from Economist Impact and HR Dive found that while 38% of organizations budget for AI and 86% of executives rate AI as essential, only 16% offer internal training and over half of department-level AI initiatives lack formal oversight (Ernst & Young). Additionally, 88% of AI vendors limit their liability, and only 17% align with regulatory compliance, per cited surveys, leaving substantial legal and operational risk for end users and service providers. Supporting this trend, Dave Sobel points to Grammarly’s opt-out identity usage in new features and a class action lawsuit against Eightfold.ai regarding AI-driven employment decisions. Vendors such as Cohesity, Rubrik, ServiceNow, and Datadog are responding by building tools focused on remediation and recovery from AI-driven incidents, underscoring a shift from preventive governance to reactive containment. Policy moves—such as expanded operational cyber roles for the private sector—further offload accountability without addressing contractual and insurance exposure. For MSPs and technology leaders, these developments create practical risks: unclear service scope around AI tool usage in contracts, increased exposure to billable incidents and legal action, and rising labor costs for incident recovery. Service providers must audit agreements for AI-specific language, distinguish AI-related incidents from standard SLAs, and treat AI governance as a managed risk service. The pressure will increasingly fall on MSPs to account for training gaps, audit trails, compliance attestations, and recovery procedures—not simply the technology itself. Three things to know today 00:00 ROI Reality Check 02:12 Governance Gap Widens 03:14 Cleanup Economy Rises 05:45 Why Do We Care?  Supported by:  CometBackup   💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

A structural shift is occurring in the managed IT services landscape as AI capabilities are rapidly embedded across enterprise applications, with oversight and risk management functions increasingly separated out and monetized as add-on services. Vendors, including Microsoft and OpenAI, are deploying AI agents in essential tools such as Outlook, Teams, and Excel, then selling governance, security, and compliance capabilities as additional paid layers. The core mechanism is the transfer of operational and liability risk downstream to IT service providers and their clients, while ownership of the control plane and margin on risk mitigation remain with the vendors. The episode highlights consequential findings regarding AI reliability and adoption. A Nature Medicine study found that OpenAI's ChatGPT Health underestimated emergency severity in 51.6% of cases, prompting concerns about overreliance on AI for critical decisions. Additionally, Confluent’s UK executive survey indicated that 62% of organizations are already shifting decision-making to AI, but only 7% have a company-wide AI strategy, and fewer than half of executives and employees agree on actual daily AI usage. Most leaders receive little formal AI training yet are second-guessing their own judgment in favor of AI output. Further reinforcing the governance gap, Microsoft is launching Agent 365 and new enterprise security tiers, while OpenAI’s acquisition of Promptfoo signals a focus on AI reliability testing and compliance monitoring. Funding for GRC platforms like IntelliGRC demonstrates capital flowing into third-party oversight solutions. The recurring pattern is vendors first pushing broad agent adoption, then introducing and monetizing governance as a discrete add-on, often outside the default package. Operationally, MSPs and IT leaders face increased liability exposure if they rely on vendor-native governance without independent audit or measurement capability. The absence of industry-standard reliability metrics for AI, combined with the perception and usage gaps inside organizations, calls for MSPs to lead in auditing, documenting, and independently measuring AI usage and performance. Failing to proactively manage these controls can result in silent risk absorption and unfavorable positioning as vendors bundle compliance and pass residual risk downstream to service providers. Three things to know today 00:00 AI vs. Judgment                            02:35 Agents vs. Oversight 04:04 AI Reliability Gap 05:15 Why Do We Care?  Supported by:  ScalePad   💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

The dominant structural shift identified centers on liability allocation and governance in the context of agentic AI deployment across IT and managed services. The episode underscores how automation is moving beyond content generation to direct operational and security actions, referencing technology from OpenAI (GPT-5.3 Instant), Anthropic (Claude Marketplace), Google Workspace CLI, Microsoft’s SharePoint AI features, and Hexnode’s Genie AI. Vendors are embedding AI deeper into productivity and endpoint infrastructure, increasing both operational efficiency and the risk footprint—making governance, reliability, and accountability the new competitive differentiators. The most consequential development highlighted is the industry-wide disconnect between rapid AI remediation adoption and lagging governance. According to Omdia, 88% of organizations are using AI-driven remediation, but only 44% have implemented it for most exposure types, and nearly half (49%) of security teams lack trust in these systems. IBM data shows that 63% of organizations lack formal AI incident response policies, meaning deployment often outpaces the development of auditability and risk management. This creates a landscape where automated decisions are taken at scale without clear accountability structures or incident protocols. Supporting developments reinforce these governance and risk concerns. Reports of cognitive fatigue—termed “AI brain fry”—affecting over 14% of users (Boston Consulting Group/UC Riverside) and a 39% increase in error rates among those affected, point to compounding human and system risk when automation outpaces oversight. Market analysis from Accenture, Wharton, and the Dallas Fed notes that AI has shifted skill demand, displaced younger tech workers, and pressured traditional fixed-fee business models. Meanwhile, vendors are migrating from predictable per-seat pricing to variable token-based consumption, passing operational uncertainty onto MSPs and their clients. For MSPs, IT service providers, and technology leaders, the practical implications are clear. Failure to implement explicit governance, contract clauses, and incident protocols exposes providers to unpredictable liability. Passing through ungoverned consumption costs under fixed-contracts damages margins as AI use expands. The increasing cognitive load on staff supervising partially trusted automation further compounds operational risk. As the pricing model shifts, providers must negotiate new contract terms, institute AI incident playbooks, audit tool autonomy, and manage the blast radius of AI with the same rigor as legacy security controls. 00:00 Platform Land Grab 03:56 Who Owns Failure 07:27 Skills Over Titles 09:52 Why Do We Care?  Supported by: JumpCloud    💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

The episode centers on D&H’s strategic approach to vendor selection, AI program development, and partner enablement within the evolving landscape for MSPs and IT solution providers. Colin Blair, Executive Vice President for cybersecurity at D&H, details a governance-driven process for curating vendor relationships, with emphasis on aligning with Gartner quadrant leaders, peer insight metrics, and channel-partner readiness. D&H’s focus remains on SMB and mid-market segments where complexity is increasing, especially around compliance, data governance, and cybersecurity. Supporting this curated model, Colin Blair notes that D&H maintains onboarding rigor but rarely offboards vendors within its advanced solutions group, citing ongoing hyper-growth and the need to continuously add value for partners. The vendor evaluation emphasizes data-driven benchmarks and sustained relationship-building at industry events. The company is prioritizing supply chain strength for MSPs, driven by measurable factors such as profitability, cultural compatibility, and proven channel strategies. The conversation also highlights the expansion of the Go Big AI program, which aims to increase AI literacy among both partners and end customers. Training initiatives reached over 5,000 partners, focusing on foundational applications like Microsoft Copilot and AI PCs, while acknowledging that project success is heavily dependent on data quality and governance. Use cases where implementations see traction are typically well-defined, such as Vision AI for video analytics in healthcare and security verticals. The need for tailored, consultative conversations is cited as significant, as end customers and partners often lack clarity on automation priorities or AI readiness. The implications for MSPs and IT leaders are pragmatic: sustainable advantage is less about technology adoption and more about managing operational complexity, ensuring data governance, and enhancing cybersecurity postures. Decision-makers are cautioned to assess both the maturity and applicability of AI solutions, invest in targeted literacy and consultation, and anchor their vendor relationships in measurable business value. The focus should be on careful risk management, transparent partnership evaluation, and supporting clients through consultative, outcome-driven initiatives rather than broad or speculative technology bets.  💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Research presented by Dave Sobel and Anurag Agarwal highlights a steep decline in profitability for core MSP services, driven by heightened commoditization and vendor-led automation of basic offerings such as endpoint management and help desk operations. According to Techaisle’s 2026 data, the traditional labor-plus-license model is no longer sustainable, as shrinking margins force service providers to reconsider foundational strategies. The central message underscores an urgent need for MSPs to prioritize proprietary intellectual property (IP) and vertical-specific solutions—not for incremental growth, but as a matter of operational survival. Supporting this assessment, the discussion details how market demand has shifted: MSPs can no longer depend on generic solutions but must differentiate with specialized, repeatable offerings that address the financial optimization and liability concerns of business clients. The data indicates that SMBs are increasingly unwilling to invest in pilots or “all-you-can-eat” AI models without visible ROI and demand concrete solutions linked to business outcomes. Vendors and MSPs alike are being tasked with providing smaller, outcome-focused wins and developing skillsets in agentic orchestration, where AI-enabled digital agents and human technicians operate as co-equal components of the workforce. A related trend explored is the shift toward agentic AI and “zero-touch” MSP models, featuring automation of routine IT tasks and focus on workflow engineering rather than manual services. However, the episode notes that most providers are unprepared for the new set of risks and governance liabilities: as clients increasingly utilize AI agents, accountability for errors and regulatory compliance will rest heavily with MSPs, especially in sensitive geographies such as Europe where contractual governance is becoming standard. Conversations on whether to “build or buy” new capabilities reflect a split market, with only the top tier capable of meaningful in-house development, and the majority relying on third-party platforms with limited differentiation. For MSPs, IT service firms, and decision-makers, the core implication is the need to rapidly develop operational and governance maturity around automation, AI orchestration, and packaged offerings. Clinging to traditional models or treating AI as a mere add-on introduces significant risk, including shrinking margins, increased liability, and potential obsolescence. Providers are advised to narrow focus, specialize in vertical solutions, invest in internal competency with AI-enabled platforms, and shift toward packaged IP to avoid falling behind as both client expectations and regulatory requirements escalate.  💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Correction (March 8, 2026): MSP Well stated that while a Discord server exists, it is currently configured as a “coming soon”/waitlist environment with posting disabled and no peer discussion channels open yet. MSP Well also stated its privacy policy has been publicly available since launch.   The episode centers on a structural governance gap within the managed services industry as it attempts to address mental health using relationship-driven models typical of event and community management. This approach is exemplified by the launch of MSPWell, a not-for-profit mental wellness initiative incorporated in Ontario, Canada, targeting participants in the IT channel. The initiative operates as a live community—particularly via Discord—without formalized clinical oversight or published operational guardrails such as moderation standards, crisis escalation protocols, or sponsor influence controls. Evidence for an urgent governance concern is provided by industry data and operational decisions. According to MSPWell, burnout affects significant percentages of the workforce—citing an 82% burnout risk from a Mercer report and 66% from separate research. Despite the recurrence of staffing challenges in the MSP industry, MSPWell’s infrastructure is underway with participation at industry events and vendor sponsorship, but formal governance documentation remains incomplete. The initiative explicitly confirms the absence of licensed mental health professionals in published leadership or advisory roles, positioning its support as peer-led. Supporting developments highlight how rapid community launch and sponsor-driven funding amplify risks when core protections are missing. Early coverage focused on recognizable names and event presence, while Dave Sobel emphasizes that, in mental health-adjacent contexts, moderation, privacy, and escalation protocols are not only differentiators but essential safeguards. At present, MSPWell’s Discord community operates without visible guidelines or documented procedures, which exposes participants to predictable failure modes such as oversharing, privacy breaches, and harmful peer advice. Operationally, MSPs and IT service providers face heightened liability when participating in or supporting such initiatives without robust controls. Dave Sobel advises operators to request moderation, crisis, and data retention policies before endorsing participation, to treat involvement as networking rather than clinical support, and to monitor for the integration of licensed professionals into governance. The absence of enforceable governance exposes both individuals and sponsoring vendors to reputational and legal risk, and sets problematic precedent for future wellness platforms in the industry. 00:00 MSPWell Builds Mental-Health Platform on Sponsor-Funded Community Model 03:21 Guardrails, Guidelines, and Moderation  06:15 The Consequences 08:09 Why Do We Care? & What to Consider Supported by:  TimeZest     💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Market segmentation driven by rising memory costs is actively restructuring the endpoint device landscape, leading to margin redistribution across the technology stack. Apple exemplified this bifurcation strategy by launching an entry-level MacBook Neo at $599 built on the A18 Pro iPhone chip, while simultaneously increasing prices on other MacBook Air and Pro models by $100 to $400 in response to global memory shortages. This deliberate move separates high-margin premium hardware from low-cost devices, effectively diminishing the traditional mid-tier device segment where most SMB and MSP standards have typically been positioned. Supporting data highlights the broader industry impact: 62% of small businesses report ongoing supply chain disruption, affecting pricing, timing, and availability, according to recent NFIB survey data. Component suppliers such as Broadcom are capturing upstream value, with a reported 29% year-over-year revenue increase driven by concentrated AI infrastructure demand. Omnia’s forecast anticipates a significant smartphone shipment decline in 2026, primarily attributed to rising memory costs and uneven impact, disproportionately squeezing entry-level devices while preserving premium margins. A parallel challenge emerges within organizational governance and service delivery. The Logicalis Global CIO Report 2026 found over half of CIOs believe AI adoption is outpacing their management capabilities, with 90% of organizations lacking internal technical expertise yet 72% planning further AI investment. This gap between ambition and readiness, combined with traditional ticket-based operating models, means unmanaged risk increases as businesses prioritize speed over structured governance. Internal IT builds are increasingly abandoned, with 71% of IT and security leaders reporting failure to meet on-time and budget targets, signaling that velocity and accountability, not just ticket closure, are becoming core client expectations. Implications for MSPs and IT service providers are immediate and operational. Service models must account for hardware segmentation by incorporating differentiated support structures for entry-level versus premium devices. Increased complexity and support demands from constrained hardware will compress margins unless properly priced and standardized. MSPs are positioned closest to liability accumulation as clients face both hardware refresh and AI adoption without sufficient internal expertise. Advisory frameworks should address total cost of ownership, memory shortage context, and governance gaps, productizing assessments and redesigning service delivery for speed with explicit controls to manage risk. Three things to know today 00:00 Memory Costs Squeeze Entry-Level Hardware as Suppliers Capture Margin Upstream 02:24 Apple's $599 MacBook Neo Signals a Split Hardware Strategy, Not a Budget Play 04:22 IT Service Models Built on Approvals Are Losing to Speed-First Competitors 06:57 Why Do We Care?  Supported by:  💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

The MSP market is undergoing a critical shift toward risk management as the central value proposition, with operational accountability now defined by the ability to produce defensible documentation and deliver rapid incident response. According to Dave Sobel, MSPs are no longer primarily offering stack management, but are increasingly brokering risk through cyber warranties, insurance underwriting, incident retainers, and AI governance frameworks. Those unable to support their claims with evidence and formal processes risk becoming mere facilitators for third-party terms and losing control over their margins. Recent developments reinforce this shift. A Splunk report finds that nearly all CISOs now view AI governance and risk management as their responsibility, citing threat actor sophistication as a primary driver. AI is assisting with event triage and data correlation, but verification—especially around AI-generated content—is unreliable, with detection tools struggling against advanced fakes. Insurance mechanisms are becoming productized with prioritized incident response, and legal intelligence is being embedded into MSP workflows. Vendors like N-able, Monjur, SentinelOne, and DocuSign are directly integrating financial, legal, and governance functions into their offerings, fundamentally altering client and vendor relationships. Adjacent stories illustrate volatility in traditional safeguards and the operational reality of adaptive threats. CISA leadership changes indicate instability in public response institutions. AI-powered malware exemplifies the challenge: ESET’s PromptSpy uses Gemini to continuously adapt its persistence, outpacing static detection models. Insurance underwriters are increasingly demanding machine-verifiable evidence of controls, using detailed questionnaires to distinguish autonomous AI from marketing claims. The risk is no longer just technical; it is structural. For MSPs and IT leaders, operational posture is now shaped by an ecosystem of embedded warranties, legal terms, governance requirements, and adaptive threats. The ability to document, defend, and productize risk controls becomes a baseline for credibility and insurance eligibility. Failure to build evidence pipelines and clarify vendor-imposed liabilities exposes service providers to compounded risk. The practical implication is a necessity for MSPs to treat governance and detection as measurable, documented capabilities—not assumptions or routine paperwork. Three things to know today: 00:00 CISOs Own Governance, Detectors Lag Fakes, Response Gets Contracted — Accountability Follows 03:14 N-able, SentinelOne, DocuSign Move Risk Management Into the Stack — MSP Terms Follow 05:10 CISOs Want Agentic AI, But Insurers and Adaptive Malware Are Forcing the Timeline 07:32 Why Do We Care?  Supported by:  CometBackUpSmall Biz Thoughts Community  💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

The episode centers on the federal government's evolving approach to AI vendor governance, underscored by the recent directive from President Donald Trump for federal agencies to halt the use of Anthropic’s AI technology. This shift follows the Pentagon’s termination of its relationship with Anthropic over the company’s refusal to relax contract restrictions around citizen data and autonomous weapons, ultimately resulting in Anthropic being designated as a “supply chain risk” by Defense Secretary Pete Hegseth. For MSPs and IT providers serving federal and SLED clients, this designation functions as an immediate procurement barrier rather than a negotiable label, directly impacting vendor eligibility and contract continuity. Contextually, 70% of federal agencies are reassessing their use of AI tools amid fluid regulations and heightened concerns around transparency and accountability, according to recent reports. The National Institute of Standards and Technology (NIST) has launched the AI Agent Standards Initiative, but enforcement is several years away, with only a request for information planned by March 2026. In parallel, a diplomatic initiative led by Secretary of State Marco Rubio opposes international regulations on foreign data handling, though this stance does not supersede foreign law, creating a complex compliance landscape, especially for multinationals. Meanwhile, the U.S. Supreme Court’s refusal to hear an AI copyright case reaffirms the lack of copyright protection for purely AI-generated works. The episode also discusses OpenAI’s agreement with the Pentagon, described by CEO Sam Altman as "rushed," and criticized for permitting domestic surveillance under flexible legal interpretations. Public and employee backlash prompted OpenAI to revise contract terms, but critics argue essential permission structures remain. Anthropic’s rollout of an AI migration feature during this period is flagged as a compliance event, raising risk when transferring data histories across vendor boundaries without audit or logging. Notably, consumer responses to AI vendor practices—evidenced by surges in Claude signups and ChatGPT uninstalls—are now influencing enterprise technology procurement as values-based purchasing enters the operational conversation for service providers. Operationally, the lack of a stable legislative or regulatory framework means MSPs and their clients face rapidly shifting governance through contract terms and procurement policy rather than law. The episode cautions that vendor selection cannot be guided by assumptions of ethical safeguards in provider policies or by default transitions to alternative vendors such as OpenAI, whose legal standing remains unsettled. Key recommendations include auditing client environments for exposure to designated supply chain risks, refraining from rigid vendor integrations, updating contractual IP language in light of the absence of AI copyright, and maintaining ongoing awareness of governance developments. Multi-vendor strategies and adaptable compliance positions are identified as essential risk mitigation practices in an environment marked by administrative fiat and reactive vendor positions. Three things to know today 00:00 Anthropic Blacklisted After Rejecting Pentagon's Autonomous Weapons Data Demands 04:58 OpenAI Wins Federal AI Contract Anthropic Refused, Then Rewrites It Under Pressure 07:38 Anthropic Outages Hit as Claude Sign-Ups Quadruple, ChatGPT Uninstalls Surge 295% Supported by: ScalePadSmall Biz Thoughts Community    💼 All Our SponsorsSupport the vendors who support the show:👉 https://businessof.tech/sponsors/ 🚀 Join Business of Tech PlusGet exclusive access to investigative reports, vendor analysis, leadership briefings, and more.👉 https://businessof.tech/plus 🎧 Subscribe to the Business of TechWant the show on your favorite podcast app or prefer the written versions of each story?📲 https://www.businessof.tech/subscribe 📰 Story Links & SourcesLooking for the links from today’s stories?Every episode script — with full source links — is posted at:🌐 https://www.businessof.tech 🎙 Want to Be a Guest?Pitch your story or appear on Business of Tech: Daily 10-Minute IT Services Insights:💬 https://www.podmatch.com/hostdetailpreview/businessoftech 🔗 Follow Business of Tech LinkedIn: https://www.linkedin.com/company/28908079YouTube: https://youtube.com/mspradioBluesky: https://bsky.app/profile/businessof.techInstagram: https://www.instagram.com/mspradioTikTok: https://www.tiktok.com/@businessoftechFacebook: https://www.facebook.com/mspradionews Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.