An Upward Spiral
MSP security that’s properly provided facilitates a kind of upward spiral for everybody. Happy clients often result in good reviews and referrals. This means more clients for your MSP, which predicates additional expansion. The better your security, the better everybody does. Especially when you consider that cybercrime is a multi-billion dollar industry— poised to be in the trillions by 2019 according to Forbes.com— it becomes even more important for your MSP to provide top-tier security. Following are several tips to help you optimize your solutions:
- A Strong Foundation Comes From Education
- Have A Portfolio Of Operations That Reads Like A Playbook
- When It Comes To Security Through Passwords, Be An Authority
- Always Provide Up-To-Date Patches
- BDR Through The Cloud Is Recommendable
You’ve got to teach clients what to do and what not to do. The vast majority of security breaches result from inside a company. Think of it like poking a hole in an inner-tube from the inside. The air is waiting to get out, and employees are running around your company’s inner-tube with technologically insecure scissors. Your MSP must identify risks and help educate employees pertaining to best practices. Many best practices will pertain to secure passwords and proper protocols defining internet usage. Your MSP security education needs to elucidate clients on the dangers they face without even realizing it. But dropping off a textbook of best practices won’t do the trick; nobody will read it. You want a trickle-down approach providing the most actionable data condensed into digestible chunks. Emails, newsletters, and employee training sessions are recommendable.
An Operations Portfolio That Reads Like a Playbook
When dealing with newer clients, if they need your security, then they likely don’t’ know much about security to begin with. As you bring them aboard your MSP vessel, you need to have materials ready which can give proper exposition to that which you’ll provide. So build a portfolio of what you’ve done in the past for clients, and then present it to newer clients like an operational playbook of prospective security solutions. This way they can tell if a call requesting password access is a scam or not–you’ll have presented a sort of playbook framework they can reference to get an idea. You’ll want to provide guidelines that are easily understood in reference to best practices. Additionally, you’ll want to include in your playbook strategies to overcome accidental breaches. Make reporting a breach straightforward.
Authoritative Password Protocols
Clients need to know about passwords. They need to know the best practices regarding their creation, and the common risks associated with poor passwords. For example, this list shows the common passwords many companies used in 2016. As you can see, these passwords are extremely simple and can be hacked with guess work should the right person decide to do so. Good practices involve passwords at least six characters in length. Eight is better, ten is ideal. Passwords should have unique symbols, letters, and numbers. They should not pertain to the company in ways easy to crack through deduction, and they should be regularly changed.
In May of 2017, the WannaCry virus hit like a hurricane and affected 150 countries who hadn’t properly patched their systems. It existed because the NSA put a surveillance “back door” into Windows operating systems which was revealed in March of the same year. Hackers immediately created a worm. Now those businesses who patched in time weren’t affected by this worm. Those that didn’t were hit hard. Ensure your MSP provides proper patches regularly and educates your clients as to their necessity.
A Safety Net Through The Cloud
BDR stands for Backup and Data Recovery. Cloud-computing provides BDR options which can help restore systems quickly should the worst case scenario knock a client offline. Provide solutions like these, and educate clients as to their efficacy as well as their necessity.
Secure Your Customers
MSP security which takes an active approach to security including BDR solutions, regular patches, proper password protocols, direct communication of security strategy, and employee education will save clients time and aggravation. Furthermore, it will solidify their continued patronage of your business and likely yield additional clients.