In the past two decades, it has been pretty popular for small and medium-sized businesses (SMBs) to outsource all things cybersecurity to a third-party managed security services provider (MSSP). But the tradeoff has often been giving up strategic thinking.
In today’s operational environment, infused with SaaS sprawl and multi-cloud hosting, the risks are everywhere and could blindside companies that don’t take a closer look at their cyber defenses. Once a company has grown to about 50 or so employees, it’s time to move beyond cookie-cutter solutions and dedicate some time to reviewing security posture. What follows are some concrete ideas for SMB IT and security personnel to examine to ensure they are effectively building a multi-faceted defense at the right level of maturity.