July 15, 2021
CISA Issues Guidelines for MSPs and SMBs in Wake of Recent Cyber Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued new guidelines for managed service providers (MSPs) to mitigate the risk of cyber threats to their client data. Threat actors are targeting MSPs more than ever and putting their clients at serious risk. To help MSPs create a more robust security posture, CISA recommends the following mitigations:
- Apply the principle of least privilege to customer environments.
- Ensure that log information is preserved, aggregated, and correlated to maximize detection capabilities.
- Implement robust network- and host-based monitoring solutions.
- Work with customers to ensure hosted infrastructure is monitored and maintained.
- Manage customer data backups.
- Prioritize backups based on business value and operational needs, while adhering to any customer regulatory and legal data retention requirements.
- Develop and test recovery plans, and use tabletop exercises and other evaluation tools and methods to identify opportunities for improvement.
- Review data backup logs to check for failures and inconsistencies.
CISA also recommends that MSPs employ a backup solution that automatically and continuously backs up critical data and system configurations. Store backups in an easily retrievable location that is air-gapped from the organizational network.
Our data shows that MSPs have become increasingly more vulnerable to threat actors–95% of MSPs state that their businesses are being increasingly targeted with attacks. The time has come for a more streamlined and strategic approach to protecting client’s data. Using ad-hoc solutions invites more risk. Implementing a proven, reliable, and tested business continuity and disaster recovery business continuity and disaster recovery (BCDR) solution along with remote monitoring management capabilities can mean the difference between peace of mind and an impacted client.
Download CISA Insights: Mitigations and Hardening Guidance for MSPs and Small- and Mid-sized Businesses here.