Ssn 2 Ep 9: Guess Who’s Accountable
New regulations coming for cybersecurity providers: accountability, liability—and what that means for you.
Show Notes:
1:15: Discussion of new regulations that are coming for the managed services industry
1:40: What is the difference between MSPs and MSSPs?
3:10: How much trouble can you get into if you’re overselling your services?
4:30: Up until now, this industry has been without regulations
4:58: Service providers currently may not realize they don’t have the skill set required to work in this space
5:45: Other service providers and contractors have to go through continuing education and certification, but this has not been required for the managed services industry
6:48: Self-assessment forms from your cybersecurity insurance broker can help you determine what kind of cyber security measures you need to have in place
9:07: What kind of disclaimer should an MSP/MSSP have in place for clients who are refusing certain services: Signed Denial of Service letter
10:45: The importance for service providers to be aware of changing laws and regulations for their industry—keep breast of services that are no longer optional
12:12: Dept of Justice’s new regulations for MSP/MSSPs
13:46: Businesses may no longer be able to pick and choose what services they need
14:18: When filling out the questionnaires, don’t check “yes” if you’re not doing something
17:35: Special requirements and regulations for public or quasi-public companies
21:31: What’s the easiest way to keep your ear to the ground on changing regulations that will affect your business?
22:42: Current administration is pushing zero trust and Amazon’s offer of free security training
Links:
DOJ Vows to Prosecute Cybersecurity Fraud by MSPs, MSSPs and Government Contractors
https://www.msspalert.com/cybersecurity-markets/americas/doj-vows-to-prosecute-cybersecurity-fraud-by-msps-mssps-and-government-contractors/
Acting Assistant Attorney General Brian M. Boynton Delivers Remarks at the Cybersecurity and Infrastructure Security Agency (CISA) Fourth Annual National Cybersecurity Summit
Washington, DC
Wednesday, October 13, 2021
https://www.justice.gov/opa/speech/acting-assistant-attorney-general-brian-m-boynton-delivers-remarks-cybersecurity-and
Deputy Attorney General Lisa O. Monaco Announces New Civil Cyber-Fraud Initiativehttps://www.justice.gov/opa/pr/deputy-attorney-general-lisa-o-monaco-announces-new-civil-cyber-fraud-initiative
Amazon Security Training:
https://aws.amazon.com/security/amazon-security-initiatives/
Your hosts: Rex Nance and Penny O'Halloran of East Atlantic Security, LLC @ https://EastAtlanticSecurity.com/
Voiceover Artist: Paul Kadach at www.voices.com