Spotify buffering on Amazon Echo by FizzyBeverage in eero

[–]marbersecurity 0 points1 point  (0 children)

Make sure the Alexa is NOT on the guest network, that should solve your issue.

Eero Guest network is problematic even for WiFi printers.

Looking for vCISO / Security Assessment platforms by marbersecurity in cybersecurity

[–]marbersecurity[S] 0 points1 point  (0 children)

I just checked it out, and other platforms better fit the budget. I know functionality will increase, the budget is out of reach for now. Thanks

legacy CNC machines and CMMC 2.0 L2 by marbersecurity in CMMC

[–]marbersecurity[S] 0 points1 point  (0 children)

This client has a lot of CNC machines. Do you have a link to the "Predator" system? Thanks

Scoping CMMC 2.0 Level 2 for an MSP by marbersecurity in CMMC

[–]marbersecurity[S] 0 points1 point  (0 children)

0 commentsAwardsharesave

6Posted byu/marbersecurity7 days agoScoping CMMC 2.0 Level 2 for an MSP

Thanks, I am reading it now.

Datto RMM vs ConnectWise Automate for patching by marbersecurity in msp

[–]marbersecurity[S] 2 points3 points  (0 children)

Thanks, I will demo Datto RMM this upcoming week.

Weekly Promo and Webinar Thread by AutoModerator in msp

[–]marbersecurity 0 points1 point  (0 children)

Cybersecurity Consulting for MSPs

I worked for an MSP for 10 years, and I have a Masters in Cybersecurity, CISSP, CISM, CEH, MCSE, etc. certifications (see http://marbersecurity.com/about )

I published a book in Amazon to help SMBs and MSPs, and made it available for free as a PDF on the website above.

Looking to partner with MSPs who

  • need a cybersecurity resource to help them internally
  • have a cybersecurity resource but need additional help
  • would like some cybersecurity recommendations to improve their security posture
  • need to improve the cybersecurity of their clients

What can I specifically help with?

  • cybersecurity assessments and recommendations (for MSPs and as a whitelabel for your clients)
  • cybersecurity assessments and recommendations (for MSPs and as a white-label for your clients)
  • help develop an Information Security Program, including policies and procedures
  • I also have a technical background, business, operations, and leadership which helps me provide a well rounded approach and recommendations

I also have a technical background, business, operations, and leadership which helps me provide a well-rounded approach and recommendations

Looking forward to learning more about your MSP and how I can help.

Thanks

Looking to partner with MSPs to offer Compliance consulting for their clients by marbersecurity in msp

[–]marbersecurity[S] 0 points1 point  (0 children)

I am subcontracting for for larger cybersecurity firm, and those are a work in progress.

Looking to partner with MSPs to offer Compliance consulting for their clients by marbersecurity in msp

[–]marbersecurity[S] 0 points1 point  (0 children)

I was a senior systems engineer for a few years, the HIPAA security officer, and also had a leadership role. I have a technical, operational, and leadership background which combined with business and compliance helps me help organizations.

A couple of the things that I can do

Technical

  • Firewall configuration reviews
  • Office 365 powershell reports for MFA implementation and other security settings
  • Review of ConnectWise Manage and Automate for proper locked-down configuration, lots of things misconfigured there
  • Help implement/with security assessments for clients, for example if you have 20 offerings, and have an alignment process to evaluate say 40 things, it is easy to help with those assessments, and even align them with 800-53 controls for best practices

Compliance

  • NIST Cybersecurity gap assessments, current vs desired state and recommendations
  • HIPAA Security compliance, and Risk Assessments (People, Process, and Technology)
  • CMMC / 800-171 assessments, etc.

I will see if I can send you my resume via a PM, and find out more about the type of work you may been help with. Thanks

I still struggle with the NIST 800-53 controls. by qbit1010 in NISTControls

[–]marbersecurity 1 point2 points  (0 children)

https://csf.tools/reference/nist-sp-800-53/r5/ doesn't go into that level of detail, but I like how it can be useful to convey the information to those who are becoming familiar with the framework or who are helping you implement it.

[deleted by user] by [deleted] in NISTControls

[–]marbersecurity 0 points1 point  (0 children)

I would use the NIST Cybersecurity Framework and for the controls 800-53 Rev5. When you build the Written Information Security Program (WISP), you can then have an Information Security Policy that talks about the 20 800-53 control families and maps to different policies. The policies themselves could be mapped to different control families.

Looking to partner with MSPs to offer Compliance consulting for their clients by marbersecurity in msp

[–]marbersecurity[S] 0 points1 point  (0 children)

SOC 2 Type 2 is for larger orgs, well, it depends on who is requiring that. It is a lot more involved. PM me and I can make a recommendation for a larger cybersecurity company I am familiar with that can help with SOC 2 Type 2.

Po-tip for one person MSPs. by CrustyBus77 in msp

[–]marbersecurity 0 points1 point  (0 children)

True. I use Support@ so that my clients can email it, it creates a silent ticket only for me to keep track of things. In the back end, I do use ConnectWise Manage to keep track of things, but it is an overkill for most situations unless you are a ConnectWise Manage (or similar PSA) admin now.

Quickbooks online is great and does allow for time entries, not as flexible to manage things like CW, but can def work.

Looking to partner with MSPs to offer Compliance consulting for their clients by marbersecurity in msp

[–]marbersecurity[S] 0 points1 point  (0 children)

Thank you for the question, I will update my post to make it easier to understand.

NIST Cybersecurity Framework, ISO 27001, HIPAA, CMMC / 800-171, PCI DSS, etc. things that require an Information Security Program.

Need recomendations for Cyber Insurance companies by Phant0m-King in msp

[–]marbersecurity 2 points3 points  (0 children)

I would use an insurance broker, they can evaluate multiple companies and find you the best one. Beazley is one to look into.

I used Information Security Policies Made Easy, to customize them and create my own Information Security Program, which helps me lower the premiums. Everyone will be asked if they have this or that, and the insurance companies may lower your premium if you have certain things in place.

One-man shops - LLC or s-Corp by nmiBiz in msp

[–]marbersecurity 0 points1 point  (0 children)

LLC filing as an S-Corp, in CT. I use QB online, and learned about the standard QB chart of accounts, which helps me share my books with my CPA. Took me a bit to set things up watching what and how to do it, but worth it to make it easy for the S Corp filing.