Beyond the Horizon: Future-Focused MSP Insights

In this conversation, Dave MacKinnon, Chief Security Officer at N-able, talks to Pete Roythorne about Managed Detection and Response (MDR) and its relevance for MSPs. They explore the differences between MDR and other technologies, the benefits of MDR for MSPs, and the cost effectiveness of implementing MDR. Dave highlights the challenges of building a Security Operations Center (SOC) and emphasizes the importance of technology selection and effective threat detection in MDR. He also explains how MSPs can communicate the benefits of MDR to their customers and the role of resiliency in protecting businesses. The conversation concludes with a discussion on the implementation process of MDR.

Key Takeaways

· MDR goes beyond detection and includes response capabilities to contain risks and protect businesses.

· MDR offers a cost-effective solution for MSPs compared to building and maintaining a SOC.

· Key considerations for MSPs in selecting MDR include technology compatibility, effective threat detection, and integrated response capabilities.

· MDR helps MSPs enhance their customers' resiliency by minimizing risks and protecting critical systems.

· Implementing MDR involves leveraging existing technology investments and focusing on effective monitoring and response.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this episode of Beyond the Horizon, Stefanie Hammond steps in to interview Lewis Pope about the critical role of compliance in the managed services provider (MSP) landscape. They discuss how MSPs can pivot to offer Compliance as a Service (CaaS), the importance of internal assessments, and the challenges faced when implementing compliance strategies. Lewis emphasizes the need for MSPs to adapt to changing client demands, manage internal cultural shifts, and consider partnerships to enhance their compliance capabilities. The conversation highlights key lessons for MSPs looking to enter the compliance space and the proactive nature of compliance management.

Some of the Key Takeaways from this episode

· MSPs must evolve to meet client demands for compliance.

· Compliance as a Service is a growing opportunity for MSPs.

· Internal assessments are crucial before offering compliance services.

· Cultural shifts within MSPs are necessary for compliance success.

· Partnering with other MSPs or MSSPs can enhance service offerings.

· Compliance requires a proactive approach, not just reactive fixes.

· Educating clients about compliance is essential for engagement.

· Realistic expectations about compliance workload are important.

· Communication with clients should be ongoing and transparent.

· Compliance can lead to increased margins and business opportunities.

Check out our Head Nerd Boot Camps and Office Hours

Follow Lewis Pope on Linked-In

Welcome to The MSP Horizons Podcast, your go-to resource for the latest insights, trends, and strategies shaping the world of Managed Service Providers. Hosted by industry veterans, this podcast delves deep into the findings of the MSP Horizons Report and key industry opportunites and initiatives, providing actionable insights to transform your IT business. Each episode features in-depth discussions with experts, thought leaders, and successful MSPs who share their experiences and strategies for navigating the ever-evolving landscape of managed services. From cybersecurity and AI integration to cloud management and compliance, we cover the critical topics that matter most to you. Join us as we explore the future of managed services, uncover growth opportunities, and provide you with the tools and knowledge to stay ahead of the curve.

Whether you're looking to enhance your service offerings, improve customer acquisition, or stay compliant with the latest regulations, The MSP Horizons Podcast is here to guide you every step of the way. Subscribe now and stay at the forefront of the MSP industry, turning challenges into opportunities and vision into reality. Tune in to ensure your business is not just prepared for the future but thriving in it.

Disclaimer: This podcast provides educational information about issues

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

Welcome to the Beyond the Horizons Podcast, in this episode we’re breaking from our usual format to bring you one of the key sessions from our Business of Security event in Texas last year (2024) where N-able Chief Security Officer Dave MacKinnon explains why selling security isn’t enough—and instead how MSPs need to focus on selling business resilience as an outcome.

Here Dave is being interviewed by Think Purple’s Alex Stanton.

Key Themes Discussed

1. Selling Resilience, Not Security

o Dave emphasizes the importance of moving away from “selling security products” and instead focusing on building business resiliency.

o Resiliency ensures that organizations can minimize disruption when, not if, a cyber event occurs.

2. The Role of Risk

o Risk is not bad; it’s healthy when acknowledged and managed.

o Businesses that ignore risk often face larger repercussions when incidents occur.

o It's essential to educate clients on identifying and understanding their business risks rather than avoiding or downplaying them.

3. Understanding Business Goals

o Start with business objectives, not security tools.

o Engage leadership with terms they understand: focus on outcomes like protecting revenue streams or minimizing operational downtime.

o Example: Discussed board-level alignment on risk tolerance and strategic investments.

4. The MSP Opportunity: Selling Outcomes, Not Products

o MSPs should present their services as enablers of business continuity and success, not just technical solutions.

o Dave encourages framing MSP offerings around risk mitigation and business continuity planning.

Key Insights

· Risk Management as a Conversation:

o MSPs should discuss tangible impacts of downtime, such as revenue loss or missed deadlines, to convey the value of investing in risk management.

o Example: A $30M office supply company loses $40,000 per half-day of downtime—a stark reminder of the cost of inaction.

· SaaS and Identity as Critical Responsibilities:

o MSPs must take responsibility for managing SaaS applications and client identity systems.

o Include identity management, provisioning, and securing integrations into service offerings.

o Highlighted the risk of lost or inaccessible data in SaaS environments without proper backups and vendor accountability.

· Tabletop Exercises and Incident Planning:

o Use tabletop exercises to identify gaps in processes, tools, or training.

o Avoid overly complex scenarios that discourage participation; start simple and build on successes.

· Tool and Vendor Selection:

o MSPs should evaluate and re-evaluate tools regularly to ensure they align with changing threats and business needs.

o Avoid tool sprawl: focus on leveraging a smaller set of tools effectively.
Disclaimer: This podcast provides educational information about issues that may be relevant to information technolog

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

In this episode, Pete Roythorne sits down with Charles Weaver, CEO and co-founder MSPAlliance, to delve into the growing demand for managed service providers (MSPs) to handle compliance for their clients. Weaver emphasizes the shift in how compliance is viewed—from a bureaucratic necessity to a significant business opportunity.

This episode is crucial for MSPs looking to understand and capitalize on the growing demand for compliance services. Charles Weaver's insights highlight the evolving landscape of compliance and its implications for MSPs. From exploring new revenue opportunities to understanding global compliance trends, this discussion provides valuable perspectives for MSPs aiming to enhance their service offerings and navigate the complexities of regulatory requirements.

Some of the key themes, this podcast touches on:

1. Evolution of Compliance:

Compliance has historically been seen as bureaucratic and procedural. However, the role of MSPs in compliance is evolving, particularly in sectors like banking and defense. MSPs are now critical in managing compliance efforts, from cyber insurance to software compliance, creating new revenue streams.

2. Cyber Insurance and Revenue Opportunities:

The pandemic accelerated MSPs' involvement in cyber insurance, with many helping clients with insurance renewal forms and charging for these services. This shift has placed MSPs at the center of the compliance discussion, expanding their roles in corporate risk and governance.

3. Global Compliance Trends:

Compliance requirements are becoming standardized across major developed countries, with regulations like GDPR influencing data privacy practices globally. MSPs are crucial for ensuring that mid-market and SMB clients meet these standards, solidifying their role in global IT management.

4. Compliance as a Service:

The concept of "compliance as a service" is gaining traction, though there are concerns about commoditization. Effective compliance requires a symbiotic relationship between MSPs and their clients, where MSPs are integral to the client's compliance strategy.

5. Vertical Specialization:

Some MSPs may choose to specialize in specific industries, leveraging their expertise in industry-specific regulations. However, there is also a push for MSPs to adopt general cyber frameworks to elevate all clients' cybersecurity standards.

6. Managed Services Immunity:

Weaver introduces the concept of "managed services immunity," where MSPs and their clients achieve a high standard of cyber hygiene and operational behavior. This concept aims to provide benefits for adopting good practices, counterbalancing the regulatory burdens.

7. Compliance and Small MSPs:

Compliance strategies should be accessible to MSPs of all sizes, not just larger ones. Smaller MSPs must balance client compliance with the need to protect themselves contractually and through insurance.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com

Explore how AI is transforming the MSP industry, from strategic applications to regulatory concerns, with Nicole Reineke, AI Strategist at N-able.
Join Pete Roythorne and Nicole Reineke, AI Strategist at N-able, as they dive into the evolving role of AI in the Managed Service Provider (MSP) industry. Discover how AI is being utilized beyond marketing and code creation, the current opportunities, regulatory challenges, and strategies for MSPs to integrate AI effectively.

Download Nicole’s White Paper, AI for MSPs at https://www.n-able.com/resources/ai-for-msps

In this episode, we explore the current state and future potential of AI within the MSP industry. We discuss the findings of the MSP Horizons report, highlighting how AI usage has evolved from marketing and code creation to more strategic applications such as predictive maintenance and efficiency improvements. Nicole explains the concept of "Shadow AI," where employees use AI tools independently, leading to broader acceptance and integration within businesses.

The conversation also addresses the growing regulatory concerns, with a shift from fear of AI to understanding its legal and ethical implications. Nicole emphasizes the need for transparency and consent when using AI, particularly in handling customer and employee data. They discuss practical steps MSPs can take to adopt AI responsibly, including setting clear standards for data use, ensuring transparency, and leveraging community resources like Huggingface.

Nicole outlines a process for MSPs to evaluate AI products, considering factors like data availability, technological feasibility, business value, and risk. She also highlights that modern tools have leveled the playing field, allowing even small MSPs to harness AI's power effectively. The episode concludes with a discussion on ensuring data integrity and the importance of data engineering in successful AI implementation.

Listeners are encouraged to explore available resources, including a white paper on AI adoption for MSPs and guidelines from industry leaders like IBM and the Center for Humane Technology.

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timefram

Disclaimer: This podcast provides educational information about issues that may be relevant to information technology service providers. Nothing in the podcast should be construed as any recommendation or endorsement by N-able, or as legal or any other advice. The views expressed by guests are their own and their appearance on the podcast does not imply an endorsement of them or any entity they represent. Views and opinions expressed by N-able employees are those of the employees and do not necessarily reflect the view of N-able or its officers and directors. The podcast may also contain forward-looking statements regarding future product plans, functionality, or development efforts that should not be interpreted as a commitment from N-able related to any deliverables or timeframe. All content is based on information available at the time of recording, and N-able has no obligation to update any forward-looking statements. https://www.n-able.com