Summer Regulatory Summit eBook

• MSP Oversight • Ensure appropriate oversight and accountability of MSP; include in committee meetings to learn about the network environment and ask questions • Vendor Management! o Well-documented internal program and processes o Detailed reviews of all critical vendors, extra focus on MSPs and cloud • Test, test, and retest… o A super-detailed policy is not worth much if it does not function as intended in times of critical measure; test your emergency preparedness plans; test your backups; document lessons learned; involve the right people • Passwords, Authentication, & Education o Protect your organization with MFA where possible; invest in password management software; continue to educate employees and shareholders o Validate M365 Environment o With transition to utilizing M365 modules (SharePoint, Teams, OneDrive, etc.) it is critical appropriate security is in place to mitigate any data compromise Big Audit Recommendation Takeaways

© SBS CyberSecurity, LLC - www.sbscyber.com

39