https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

From the Industry


Sponsor Content

Pencil eraser

Common MSP Cybersecurity Mistakes

  • August 17, 2018
As SMBs are increasingly impacted by cybersecurity, MSPs are facing business viability risk, as well as lucrative growth opportunity, depending on their cybersecurity strategy.

Managed IT service providers are finding themselves at a crossroads. Cybersecurity incidents are impacting small to midsize businesses (SMBs) more and more, making business-as-usual uncomfortable for MSPs.

Just how big is the risk to small businesses? According to the 2017 Verizon Data Breach Investigation Report, 61% of breaches targeted SMBs, up from the previous year’s 53%.1 These cyber attacks cost small businesses anywhere from $84,000 to $148,000.2 And 60% of small businesses go out of business within six months of such an attack.3

SMBs are waking up to the fact that traditional perimeter-focused defenses–such as firewalls and signature-based endpoint protection like anti-virus–are simply not enough to protect against modern cyber threats.

“Advanced targeted attacks are easily bypassing traditional firewalls and signature-based prevention mechanisms. All organizations should now assume that they are in a state of continuous compromise.

Gartner, Designing an Adaptive Security Architecture for Protection from Advanced Attacks

As such, managed security services offer MSPs an effective means to both protect revenue by further entrenching their services into customer environments and expand revenue by adding in-demand cybersecurity capabilities without overhead or risk.

Where Do Many MSPs Go Wrong?

As MSPs scramble to fill the cybersecurity gap for SMBs, they are discovering challenges. Here are five common MSP cybersecurity mistakes and how to avoid them:

1. Delivering tools instead of solutions. The cybersecurity technology marketplace is enormous, and so the sheer volume of tools deployed could result in a messy, inefficient tech stack marred by both unnecessary overlap and vulnerable gaps in security coverage. Instead, consider solutions that consolidate core defense-in-depth capabilities like centralized log management, event monitoring, endpoint protection, network- and host-based intrusion detection, threat intelligence, and even deception. While there is no silver bullet for cybersecurity, take a holistic look at your strategy and minimize the number of disparate parts.

2. Selecting partners that don’t provide managed service. The fastest and most effective way to add cybersecurity is for an MSP to partner with a managed security solution provider that can become an extension of their team. Selecting a monolithic cybersecurity tech company that is not in the business of “service” is often a mismatch relationship for MSPs that greatly value SLAs and need to augment their own staff with cybersecurity expertise.

3. Providing a one-size-fits-all solution. Flexibility is important when considering how to package or bundle managed security solutions. Each customer will have a varying level of acceptable risk and may not want continuous, daily or weekly monitoring, but rather only critical endpoints put within scope. MSPs can achieve this through a Co-Managed SIEM, which allows the customer, MSP staff and SIEM provider to work in concert.

4. Taking an “If I build it, they will buy” mentality. Cybersecurity is crucial, right? Yes, we know that. But many SMB customers don’t. If marketing and selling cybersecurity were easy, we wouldn’t see so many data breach headlines in the news. MSPs must put careful thought and resources into marketing their cybersecurity services, starting with their current base.

 5. “Techsplaining” to SMB customers. Having a sales strategy is one thing; having an effective sales strategy is another. As IT professionals, MSPs too often want to expound on the technical capabilities, feature sets and breakthrough innovations in the solution, and think the business value will be quite evident. In such cases, the customer becomes frustrated and the MSP loses relevance. MSPs should be prepared to answer questions such as:

“I’m not a target. Why do I need to spend more on cybersecurity?” In this case, focus on business risk and put it in terms they understand–money. In addition, explain that cybercrime isn’t necessarily personal, its opportunistic.

“What’s wrong with my firewall and anti-virus?” In this case, explain that cyber threats come from all different angles and are constantly ramping up their game. Introduce them to the defense-in-depth concept. A set-it-and-forget-it cybersecurity plan is not only useless, it’s considered negligent by the fact that data protection regulations typically cite the need for active monitoring and management.

MSP Cybersecurity Checklist

In short, to counter these pitfalls in successfully developing, selling, and delivering your managed security services, consider the following:

  1. Develop a unified cybersecurity solution that fuses together technology, people, and process.
  2. Partner with service-minded cybersecurity providers that can help you meet SLAs.
  3. Create a “Crawl. Walk. Run” model to ease customers into advanced threat protection.
  4. Prepare a well-thought-out sales strategy to effectively communicate to your base.
  5. Speak your customers’ language and ensure your pitch addresses business goals.

If you’re ready to transition successfully to a managed security service provider, use this checklist as a guide and watch out for the common mistakes.

Aaron Branson is Vice President of Marketing for EventTracker, a provider of Managed SIEM and SOC solutions, where he is responsible for business growth and cybersecurity evangelization.

This guest blog is part of a Channel Futures sponsorship.

Sources

1 Verizon Data Breach Investigation Report

2 The Guardian

3 Internet Privacy in the Digital Age, Champlain College

 

Tags: Cloud Service Providers Digital Service Providers MSPs VARs/SIs Best Practices From the Industry Security Netsurion Sponsor Content

Related


  • Endpoint protection MSP
    Rethink Endpoint Protection in 2021
    Attackers exploit endpoints for maximum damage, making comprehensive and purposeful endpoint protection critical.
  • Holiday season
    8 Threats to Watch for This Holiday Season
    Here’s a list of holiday season threats and best practices to defend against them.
  • MDR
    Key Elements of MDR for Powerful and Practical Cybersecurity
    Accelerate detection and remediation of advanced threats with a managed approach through MDR.
  • Machine learning and automation
    MSPs are Bolstering Security Programs with Machine Learning and Automation
    Overcome the skills shortage and alert fatigue with advanced machine learning and automation technology.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Infographic: What to expect from your SOC-as-a-Service
  • Business Information Solutions Case Study
  • Netsurion Case Study: Altamaha Bank
  • Managed Security for Healthcare Brief

Galleries

View all

New, Changing Partner Programs: AWS, Tech Data, Avaya, Verizon

January 11, 2021

Industry Perspectives

View all

The Importance of Being Security-Centric

January 22, 2021

Cyberattacks: Threat Hunters Conquer Unpredictability with 3 Measures

January 21, 2021

The Right Data Migration Tool Helps Schools Move to Cloud During COVID Crisis

January 19, 2021

Webinars

View all

Who’s Behind the Mask? Hacker Personas Explained

January 26, 2021

Your Network Perimeter Has Changed

February 18, 2021

How Managed Hosting Providers Thrive with the Alternative Cloud

February 24, 2021

White Papers

View all

Why Subscription Business Model

January 15, 2021

The Ultimate MSP Guide to Sales Efficiency

January 14, 2021

Eight Reasons Why MSPs Need IT Industry-Specific Sales Tools

January 14, 2021

Upcoming Events

View all

Channel Partners Virtual

March 2, 2021 - March 4, 2021

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

.@exabeam, @VulcanCyber, @ntti3, @Vectra_AI, @Lookout and @valtixinc give high marks to @POTUS' federal… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

Judge sides with @AWScloud against #Parler; @SADAsystems gets AI-centric board member; @EnsonoIT, @navisite get… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

2021 may be the year of the #security-centric #MSP @BarracudaMSP #remoteworking #ITsecurity #dataprotection #RMM… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

Adding #AIOps and #AI-driven WANs will help IT administrators move forward, says @MistSystems.… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

Microsoft taps @tybryson as corporate VP @msuspartner group @julwhite heading to SAP, @anderson to @Qualtrics.… twitter.com/i/web/status/1…

January 22, 2021
ChannelFutures

#MSPs can inject predictability into #threathunting @Sophos #cybersecurity #ransomware dlvr.it/Rr4ffV https://t.co/Bztc2Yxwvc

January 22, 2021
ChannelFutures

.@RiskBased report shows decrease in #databreaches, jump in exposed records in 2020. dlvr.it/Rr4fcW https://t.co/PYiDMiJFbt

January 22, 2021
ChannelFutures

Legal experts say @VMware's #lawsuit against @nutanix's new CEO holds little weight. dlvr.it/Rr48FJ https://t.co/oLxPhgvgAt

January 21, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X