8 MSP Best Practices for Internal Security

As an MSP, you understand the importance of a well-rounded security posture and you relay that to your clients. But you can’t protect your clients if you don’t protect yourself. Make sure you follow these security best practices internally or risk an attack that compromises your system and, ultimately, your clients’.

Use a Password Manager

 

Require MFA Everywhere Possible

 

Manage Updates/Patches

 

Lockdown Your Endpoints

 

Harden Your Email Services

 

Create an Incident Response Plan

 

Require Security Awareness Training for Employees

 

Apply and Test Backups

 

Use a Password Manager

Every day, hundreds of stolen credentials are put on the dark web. One of the easiest and most effective ways to protect a business’ credentials is to leverage a password manager, which generates and organizes unique passwords for every application your team uses.

Require MFA Everywhere Possible

Multi-Factor Authentication (MFA) is key to combating unauthorized access to sensitive data. This is especially important to use within your RMM and PSA tools, but it should also be required for admins of Office 365, backup, and security vendors.

Manage Updates/Patches

Keeping Windows up to date is crucial, but you need to look beyond the operating system. Make sure your applications and tools, especially your RMM and PSA tools, have the latest patches.

Lockdown Your Endpoints

Implement an endpoint protection solution that leverages next-gen detection engines and provides automated remediation capabilities. You’ll likely want to disable the use of USB drives and the execution of script files, as well as prevent users from running specific applications and block inappropriate/malicious websites.

Harden Your Email Services

Layering additional security with more advanced functionalities, such as URL scanning and attachment sandboxing, onto Office 365 Exchange Online Protection is critical. Configurations should also be set up to filter malicious file types and extensions, or non-business-related IP addresses. Additionally, configuring SPF, DKIM, and DMARC records can combat spoofing techniques used against your organization.

Create an Incident Response Plan

Formally define an action plan for security incidents. Start by examining current assets and evaluating your potential risk. Establish clear guidelines to analyze, contain, and remediate a threat. Additionally, a post-breach inquiry should be conducted to confirm the attack isn’t repeatable. Consider forming an Incident Response Team, as well as formalizing a communications plan to inform clients and business partners when an incident occurs.

Require Security Awareness Training for Employees

Initial security training should be required for all new hires, as well as recurring, company-wide security education. Look for a security awareness training platform that tracks employee progression and tests them with phishing simulations. It’s critical that your employees know how to identify attacks and understand what to do after a potential threat is discovered.

Apply and Test Backups

Even if you have the best security stack, no solution promises 100% protection, which makes having backup across all workloads so crucial. Backing up cloud data, such as Office 365 and Azure, is just as important as on-premise data. Don’t overlook recovery responsibilities when crafting a redundancy strategy. Testing your backup is critical to make sure all data is recoverable. Backing up emails, files/folders, and server images is worthless if you can’t restore the data in a timely manner.

These 8 MSP best practices will protect your company’s data and give your team experience with these solutions, which can help increase sales and improve support. Talk to your Pax8 Cloud Wingman to learn more about the types of security solutions that you, as an MSP, should implement internally.

About Pax8

Pax8 is the leader in cloud distribution, focused exclusively on aggregating cloud solutions and services to empower our partners.

Pax8, Inc 
5500 S Quebec St #350
Greenwood Village, CO 80111 
1-855-884-PAX8