How can MSPs build an incident response strategy -- before an actual cybersecurity incident or customer data breach occurs? Drew Sanford, VP of global security operations at ConnectWise, offers perspectives in this podcast.
Our conversation occurred roughly four months after ConnectWise launched an Incident Response Service for MSPs and their end-customers. That service, by the way, is available to both ConnectWise partners and non-partners, the company said.
But how can MSPs proactively focus on incident response? Sanford offers tips in this podcast:
The conversation covers:
- 0:00 - Introductions
- 0:36 - Before a cyber incident or data breach occurs: What is and isn't happening in the MSP market.
- 2:17 - How MSPs should audit customers to understand what they have, what needs to be protected, and what needs to be recovered in specific order.
- 4:06 - How MSPs should understand executive and employee roles at the end-customer, and their associated incident response priorities.
- 6:05 - Where and how ConnectWise assists with MDR (Managed Detection and Response) and Incident Response.
- 8:45 - Where automation plays in the Incident Response journey.
- 10:52 - How ConnectWise's SIEM integrates with third-party security data.
- 12:40 - How Incident Response is extending from large organizations down to small MSPs and their end-customers.
- 13:50 - For more information: Visit ConnectWise.com, look for the solutions menu and select Incident Response.
- 14:33 - Conclusion.