The security industry publishes reports on threats, trends, and other topics several times each year. It’s hard enough keeping up with the everyday demands required of managed services providers (MSPs)—trying to stay in the loop on these reports can be a nightmare. So I want to make things easier on you by giving you the highlights—and what I think it means for you on a practical level.
Today, we’ll talk about a report recently published by FireEye, which interviewed several security leaders from FireEye to make their predictions for 2020. Below are my key takeaways for MSPs.
Note: You can read the full report here.
You Don’t Have Full Visibility into the Supply Chain
Networks have grown more complex. Businesses have moved more and more of their essential services to the cloud. Cloud services are generally secure—they need to earn your trust to operate—but nothing is perfect. Some may use software packages that aren’t fully vetted or use open source components that lack the security standards of privately developed code.
In other words, there’s almost always a weak link in the chain, and that link could cost you. It’s virtually impossible for you to police all of this, especially with multiple customers. This supports a point I’ve said before—soon, preventive security won’t be enough. To truly protect your customers, you’ll need to provide proactive monitoring and have a strong incident response plan in place.
The bottom line: as the outsourced IT department for your customers, your domain doesn’t end within the boundaries of their infrastructure. You also need to understand the impact of third-party providers—including their security, policies, and the contracts they have in place.
Employ Tools and Processes to Help with Cloud Threats