MSP 1337 | Cybersecurity Education & Security Guidance

Ever wonder why your prospect or client gets a confused look on their face?  You try to describe the new service offering or features that have been added to improve the security or efficiencies of their task force but they just don't seem to understand what you are trying to tell them.  Join Charles Love, of ShowTech Solutions, and myself as we talk about some ways to change the approach to solutions that will be met with much less resistance and are much easier to understand.

If my organization has no technology can I still be secure?  Matt Topper of Connectwise and I explore Cybersecurity with an approach that says you can prove a mature cybersecurity posture without technology.  Technology is shiny and often can be a distraction from a focus on business functions and what we should be trying to protect.  Stick around until the end as we may in fact find that technology is still a very important component of a mature cybersecurity-focused business.

With Communities, Councils, and Forums just a few weeks away, I thought we should tee up the Unfiltered Fireside chat between Matt Lee of Pax8 and myself.  In this precursor, you will hear our two different approaches to achieving the same outcome.  There might be some references to, "The Yellow Brick Road," and maybe a reference to the children's game, "Chutes and Ladders."  This is a fun banter between two friends that you don't want to miss.  Enjoy!

We talk a lot about social engineering and its potential impact on our employees, our businesses, and even our family and friends.  What we often fail to talk about is our responsibility to ensure that our employees, clients, family, and friends are educated about the dangers.  What can we do to reduce risk without strict and aggressive tools that block or prevent staff from using social media?  We all know they will likely still need to use email and despite our efforts, bad emails still get through to our end users.  Join me with Jim Harryman as we discuss ideas and an approach that gets everyone on board with staying safe when it comes to social media.

We are beginning to see a pattern in frameworks updating or adding additional privacy controls. Whether they are long overdue or not is neither here nor there as they are now being stood up.  From CCPA becoming CPRA, ISO 27001 adding new safeguards, and others all looking to improve privacy.  I sit down with Sarah O'Kelley of Choice Cyber to discuss how data protection and en emphasis on privacy.  Great discussion... Thank you Choice Cyber for the wonderful insights.

Have you ever dealt with a client, prospect, or perhaps an internal event that caused harm to your business or others?  If so I am sure you can relate to feelings of shame, and embarrassment and I am sure many sleepless nights as you work to recover as quickly as possible.  I sit down with Miles Jobgen of CompTIA and Robert Cioffi of Progressive Computing to talk through a real-world experience and how the CompTIA Emergency Response Team came to be.  The Genesis of ensuring that a business doesn't have to navigate an emergency alone.  To have a team come alongside you at no cost to your business.  Volunteers who want to help you! 

There is some buzz circulating about the upcoming CompTIA Cybersecurity Trustmark, Compliance with frameworks, and how to get started as a solution provider.  I sit down with Matt Lee of Pax8 to discuss the opportunities presented to Solution Providers who submit their organization to comply with a framework.  Similarly, the new Trustmark from CompTIA while not a framework on it's own has taken on safeguards from multiple frameworks to give direction and a path toward cybersecurity maturity.

There is still a mindset in our industry that says, " You are too small to need X." With the experiences shared by Sarah Goffman of TCE Communications, we cover the necessity of firewalls, Endpoint protection, and other security components that are necessary for today's threat landscape.  Great conversation and I think a big opportunity to educate prospective and existing clients on the threat landscape.

I sit down with Kevin McDonald of Alvaka to talk about the three main scam types out there and what they look like.  While we might not be able to prevent all threat actors from prevailing, we can make it more difficult and in many cases, our quick actions can reduce the likelihood of someone else falling victim to the same attack.  If it is too good to be true then it probably is!

So this episode is not about Lastpass specifically but about Password Hygiene and best practices around securing your credentials. We talk about the better-than-nothing model and even some unconventional ideas around password management.  Hopefully this conversation with Eric Hanson of Inland Productivity Solutions will give you some ideas on how to talk about better passwords and the necessity of password management with your clients.