3 Questions to ask your MSP (IT Managed Service Provider/Vendor)

Thanks for those comments, it does help.

amaurisrodriguez

As someone who works for an MSP, these are Great questions to ask.
I would add to this question for the client asking the MSP (If they are actually decent). What kind of costs/measures would it take to bring our environment up to your/modern security and compliance standards.
MSP's are being targeted more than ever by cyber security attacks, so it's important we stay on top of all of the latest security implementations for ourselves and our clients.

The only downside to bolstered security, is increased cost on the client. Most businesses (especially in this economic situation) can't afford or don't want to spend money on increased security (2FA on endpoints, email and cloud apps. Advanced AV with SOC alert and advanced threat monitoring and management. Etc)

Hopefully as these big attacks become more realized by the general public, people will start taking their business security seriously.

MRkillrownage

A very nice video and very critical 👌 questions.

I been working with an MSP company for about 7 years now and I fully understand clients concernes and I can tell you these are very important 3 questions.

zopaap

I have been working at MSPs for around 6 years and I'd add what are the ways we can retire legacy systems, and modernize infrastructure quickly to prevent security risks and daily performance issues in a business environment where we have to spread cost over time?

austinnovitsky

Just ask how many of the NIST 800-171 or ISO-27000 Series Security Controls are in place and show us proof, not to mention the more stringent NIST-800-53. With growing interest on CMMC, most MSP are not ready while keep selling their service endangering their customers' business. Recent experience with a cyber security service provider, after the sale pitch, ask the infrastructure team if they comply with any regulatory compliance. The answer is simply we have none!

characters