Is your Managed Service Provider Secure?

Cyber Security on the Mechanism of Metal Gears..jpeg

Is your Managed Service Provider Secure?

10 Important Questions to Ask Your Current or New MSP Provider about

Securing Client Information.

The Department of Homeland Security’s Incident Report states that as of April, 27th, 2017 several IT Managed Service Providers (MSP’s) have been targeted by cyber criminals resulting in compromised client data.

We understand the importance of protecting your client’s nonpublic information, and our team of IT security experts at Power Consulting put together a list of 10 important questions to ask your current (or new) MSP provider. These questions can help ensure the MSP is implementing and maintaining security practices that safeguard your client’s data against cyberattacks.

Risk Assessment and Prevention:

The MSP should help identify and assess internal and external cybersecurity risks that may threaten the security or integrity of your client’s nonpublic Information stored in your Information Systems.

  1. With what frequency does the MSP conduct vulnerability testing and cybersecurity scans for your company?
  2. What measures does the MSP take to ensure that their tools for remote access aren’t being used maliciously to access your network?
  3. Does the MSP keep an audit trail of their engineer’s changes to your systems?

Onboarding and Offboarding Employees:

50% of cyberattacks are caused by employees that aren’t trained on the implementation of a company’s updated security practices and procedures.

  1. Does the MSP offer ongoing training on updated security practices and procedures for your company’s employees?
  2. What is the MSP’s policy about password changes for new hires and terminated employees?
  3. How often does the MSP change their administrative passwords?

Learn More:

 Password Management:

To protect the passwords that protect your customer’s data, the MSP must have an efficient password management system in place.

  1. Who at the MSP will have access to your passwords? How and where will these passwords be stored? Are the passwords stored encrypted?
  2. Does the MSP use any shared passwords with multiple employees or are there individual passwords for all services?
  3. Does your MPS use multi-factor authentication to provide access to client information?
  4. Can your MSP’s employees access your network with just a login & password?

With the help of our cyber security consultants, each company can have and maintain a cybersecurity program designed to protect the confidentiality, integrity, and availability of your client’s Information Systems.

Is Your Company At Risk of a Cyber Security Attack?