How Information Security Audits Can Lead to New Opportunities for MSPs

by Sarah Harvey / June 14, 2023

Managed service providers (MSPs) have a unique role: they are entrusted by other organizations to fulfill some or all of their business functions. Often times, organizations hire MSPs to create and maintain strong security postures, and when these organizations partner with managed services providers, they want to know that they won’t bring more risk into their environment. So, how can they ensure that they won't increase risk? How Can MSPs…

Will I Pass or Fail the SOC 1 Audit?

by Joseph Kirkpatrick / April 5, 2023

If your organization is making the investment in information security audits, it’s understandable to question whether or not you will pass or fail the audit. After all, many organizations pursue compliance because they have something at stake, like a new client or big product launch, and if they do not pass the audit, there could be severe consequences. However, there’s good news when it comes to SOC 1 audits: the…

Do I Need a SOC 1 Type I or a SOC 1 Type II?

by Joseph Kirkpatrick / April 5, 2023

If you’ve been asked to demonstrate SOC 1 compliance, you’ll need to determine what exactly is being asked of you. For example, do you need a SOC 1 Type I or SOC 1 Type II audit? Do you need both? Let’s take a look at the difference between a SOC 1 Type I and SOC 1 Type II audit and how you can determine which is most suitable for your…

Secure Your City: Airports

by Sarah Harvey / June 14, 2023

Why is cybersecurity for airports important? According to the FAA, more than 2.6 million passengers fly in and out of US airports on a daily basis. That’s 2.6 million people who rely on – and expect – airports, airlines, and aircrafts to deliver secure services. As the cybersecurity threat landscape continues to evolve, it’s more important than ever that the airline industry understands and effectively mitigates the risks they’re faced…

Who Owns the Risk?

by Sarah Harvey / June 15, 2023

We find that managed service providers (MSPs) are often reluctant to take responsibility for the risks that they pose to clients. Their clients, though, may assume an MSP does take hold of a particular risk – and here lies the problem. When this type of miscommunication occurs, it leaves major gaps in organizations’ security posture. So…who owns the risk? Shifting the Risk When an organization engages with one or more…