Every day you hear about new cyberattacks hitting large and small companies. No one is immune – 76% of businesses reported being a victim of a phishing attack in the past year. Cybersecurity experts are in short supply. Our certified security experts can help protect your data and provide peace of mind. Our base managed security service provides managed perimeter protection and includes antivirus and DNS filtering to thwart threats from malicious websites.
Mike: Hi. I'm Mike Matchett with SmallWorld Big Data. And I'm here talking with Jeremy Kurth, who's the CTO of Logically, an MSP that's doing some really great things for their clients using automation and intelligence. Welcome Jeremy.
Jeremy: Hi Mike.
Mike: Today, Jeremy, I wanted to ask you about security. I want to talk about what an MSP does for security because it's such a big topic. And we just ... people say oh yeah. Check. It's a checkbox for some people and other people it's like no, no. It's like 25 checkboxes. We're talking with MSPs and they say, "Hey. When we talk security, we're talking about various things from vulnerability testing, anti-spam, anti-virus, perimeter penetration, even some personnel kinds of security issues." What, in your view, is security in a nutshell for a client?
Jeremy: You know. It's a great question. And you hit it on the head in terms of ... there are so many different products and solutions that exist out there. Security for me is really around listening and partnering with your client to understand their business, their requirements. And hopefully what you find in an MSP is not only the experience and the expertise that you may not home grow or have internally, like certified CISSPs who really know the nuts and bolts of the technical side. But also an MSP who's sensible with your dollars because one of the challenges with security is it can be a blank check. And you're never done. You're never finished. So being able to make common sense recommendations that align with your business and your business strategies as well as your needs and your technologies is hopefully what you find with an MSP.
Mike: Especially one who's really listening to you and working with you. You mentioned something about just having the expertise and that depth of expertise and the bench strength. Just say a little bit more about that for the people who may being saying, "Should I go out and hire someone? Do I need someone on staff?"
Jeremy: Absolutely. And yes. I would say that there are many organizations where it's absolutely justified. If you're heavily regulated, and you've got day-to-day QA things around compliance, there's an absolute need for full time. But some of the expertise that a managed service provider should or can bring is really in two parts of security.
There's the compliance component of it, where your organization needs to adhere to a set of standards and policies. And that part really is the foundation to then align with the security solutions or providers that you bring in to the door. And an MSP should be having both conversations with you. And if they're just putting solutions or security suites out there, you might have to stop and ask why. We first need to define what the rules of the game are in our organization before we go out and spend money on things. And that's what a managed service provider should do. They should understand not only the difference between compliance and security, but also how they need to be brought together and governed really well.
Mike: Bringing that together. So let's talk specifically more about Logically and how you guys at Logically then go in and work with a customer on security. I take it from your description you're not just bringing all the products you have in your portfolio and saying, "Sign up for this, and give me a big check." You're instead going in and doing something a little bit more collaborative.
Jeremy: What we do is in our standard managed services offering, we absolutely have an essentials that's geared towards our security. And it's a need-to-have. But when we start getting into a security-centric conversation, we do. We sit down with the client. We really understand, are they regulated by any particular industry and/or specific needs that we absolutely have to hit as a minimum requirements. And if no or if yes, we go down the path. We've got our IT governance department that really helps define that along with our security team. And then from that exercise, we come to basically the minimum requirements of what solutions, and we advise them best on how to spend and allocate their budgets. And then come away with hopefully a really good solid plan that makes both sense for them as well as within our stack of experience and stuff that we can provide.
Mike: Right. And part of that, I heard you mention you've got this IT governance section that's got specialties in compliance and regulatory. You've got certified security experts in other areas, and you almost customize this per individual client that comes along that needs different things.
Jeremy: We do. I don't think that ... well, my experience in the SMB of our core client base is not every shoe fits all. Having said that, there are commonalities and best practices that we bring to the table. And we say, "Look. Here's what we see in the financial industry for example. Here's what we see in the healthcare markets."
Mike: So a vertical
Jeremy: Exactly. We bring those experiences to full ... or to bear I should say. And make sure that our clients are covered to the best of our ability.
Mike: Right, right. Awesome. There is so much more to talk about security. I know that ... I know we sort of chatted about it, and we could go for like 25 minutes. And maybe we should because that's a hot topic. But I think we've got to stop here for now. Thanks for describing really the value of an MSP security offering to a customer. Jeremy, thanks.
Jeremy: Absolutely, Mike. Take care.
Mike: All right. Take care, guys. We'll be back shortly.