The Cyber Savvy Cafe

Ssn 2 Ep 9: Guess Who's Accountable

Listen

Description

Ssn 2 Ep 9: Guess Who's Accountable

New regulations coming for cybersecurity providers: accountability, liability—and what that means for you.

 

Show Notes:

1:15: Discussion of new regulations that are coming for the managed services industry

1:40: What is the difference between MSPs and MSSPs?

3:10: How much trouble can you get into if you're overselling your services?

4:30: Up until now, this industry has been without regulations

4:58: Service providers currently may not realize they don't have the skill set required to work in this space

5:45: Other service providers and contractors have to go through continuing education and certification, but this has not been required for the managed services industry

6:48: Self-assessment forms from your cybersecurity insurance broker can help you determine what kind of cyber security measures you need to have in place

9:07: What kind of disclaimer should an MSP/MSSP have in place for clients who are refusing certain services: Signed Denial of Service letter

10:45: The importance for service providers to be aware of changing laws and regulations for their industry—keep breast of services that are no longer optional

12:12: Dept of Justice's new regulations for MSP/MSSPs

13:46: Businesses may no longer be able to pick and choose what services they need

14:18: When filling out the questionnaires, don't check "yes" if you're not doing something

17:35: Special requirements and regulations for public or quasi-public companies

21:31: What's the easiest way to keep your ear to the ground on changing regulations that will affect your business?

22:42: Current administration is pushing zero trust and Amazon's offer of free security training

 

Links:

DOJ Vows to Prosecute Cybersecurity Fraud by MSPs, MSSPs and Government Contractors

https://www.msspalert.com/cybersecurity-markets/americas/doj-vows-to-prosecute-cybersecurity-fraud-by-msps-mssps-and-government-contractors/

 

Acting Assistant Attorney General Brian M. Boynton Delivers Remarks at the Cybersecurity and Infrastructure Security Agency (CISA) Fourth Annual National Cybersecurity Summit

Washington, DC

Wednesday, October 13, 2021

https://www.justice.gov/opa/speech/acting-assistant-attorney-general-brian-m-boynton-delivers-remarks-cybersecurity-and

Deputy Attorney General Lisa O. Monaco Announces New Civil Cyber-Fraud Initiativehttps://www.justice.gov/opa/pr/deputy-attorney-general-lisa-o-monaco-announces-new-civil-cyber-fraud-initiative

Amazon Security Training:

https://aws.amazon.com/security/amazon-security-initiatives/

 

Your hosts: Rex Nance and Penny O'Halloran of East Atlantic Security, LLC @ https://EastAtlanticSecurity.com/

 

Voiceover Artist: Paul Kadach at www.voices.com