mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.

Server stats:

8.4K
active users

#MSSP

2 posts2 participants0 posts today

Gotta go finish up a job I started a few weeks ago. Residential setup replacing an original Mac mini for an M4 Mac Mini.

It’s also my first MSP client that is not a small business. Moving some resources into home IT for moving people to Open Source projects or tools to get away from subscriptions.

Seems a lot of people don’t want to be consumers billed monthly for nothing and would rather have a person support them.

You all keep passing on easy money, I will pick up the scraps and protect Grandma.

I may even start a full on service called “Uncle Lee’s modern medicine, 21st century IT for 20th century user”

MSSPs are caught in a dangerous cycle with their own vendors.

The Problem: A MSSP uses Vendor X's EDR for incident response. When they try to convert those IR clients to MDR, Vendor X steps in with a direct offer. The vendor becomes a competitor, not a partner.

Why this happens: Large vendors see themselves as the complete solution. They have little incentive to protect partner relationships when they can serve customers directly.

The result: MSSPs end up competing with their own infrastructure providers for the same customers.

This isn't a sustainable partnership model. Service providers need true infrastructure partners who enable growth, not vendors who view them as competition.

Watch our full webinar on solving these MSSP challenges: limacharlie.io/webinars?wchann

BLOKWORX grew their prevention-focused MSSP by 5x while streamlining operations for their MSP partners using our SecOps Cloud Platform.

The challenge? Supporting overwhelmed MSPs struggling with alert fatigue and 24/7 security monitoring across multiple client environments.

BLOKWORX leveraged our platform's key strengths:

> Native multi-tenancy for seamless client management
> 1-year free data retention reducing SIEM costs
> Extensive automation to eliminate alert fatigue
> API-first architecture for unlimited customization
> Limitless scalability without performance degradation

The results? They now deliver prevention-focused security services with templated deployments, automated incident response, and reduced MTTR while maintaining their 24/7/365 human support model.

"LimaCharlie didn't just solve a problem, it gave us a platform to stay ahead. With the right infrastructure, even the most complex security operations can scale with clarity and control." - Robert Boles, Founder & President

Read the full case study:limacharlie.io/blog/case-study

What makes the difference between minute-long and millisecond response times for MSSPs?

Our SecOps Cloud Platform (SCP) offers three key advantages for MSSPs looking to improve incident response times, with some reporting a 98% reduction in response time:

> Effective EDR Capabilities - The platform enables response actions on endpoints in as little as 100ms, reducing the gap between detection and mitigation for critical threats.

> Rapid Deployment for Incident Response - The multi-platform agent can be deployed at scale in minutes during IR engagements, providing immediate visibility and access to forensic tools like Velociraptor, Hayabusa, and Plaso.

> Sleeper Mode Deployment - MSSPs can pre-deploy sensors to client endpoints for minimal cost, then activate full EDR capabilities when needed. This approach enables faster response and more competitive service-level agreements.

"Our previous technology was cutting-edge, but our mean time to detect and respond was still measured in minutes. The LimaCharlie SCP agent has improved our MTTD and MTTR by around 98%," reports an MSSP founder.

Find detailed implementation guides on our blog, including Infrastructure as Code templates for IR automation and step-by-step instructions for configuring "Sleeper Mode" deployments: limacharlie.io/blog/MSSPs-impr

Is your MSSP struggling to grow while your EDR vendor targets your customers with their MDR services?

Join Maxime Lamothe-Brassard TODAY at 10:00AM PST / 1:00PM EST to discover how to respond faster, scale efficiently, and increase profitability with practical solutions for:

> Deploying in minutes during emergency incidents
> Maintaining consistent security with Git integration
> Unifying visibility across multiple data sources
> Creating new revenue streams without retraining staff

Register now: limacharlie.wistia.com/live/ev

Tomorrow! Join Maxime Lamothe-Brassard for an MSSP-focused session on scaling operations while reducing costs this Wednesday, March 26th at 10:00AM PST / 1:00PM EST.

In this session, we'll cover:

> Emergency onboarding strategies
> Multi-tenant security configuration management
> Unified visibility across security tools
> Streamlined deployment solutions
> New revenue stream opportunities

Register now: limacharlie.wistia.com/live/ev

IBM's latest research validates our long-standing position: security platformization works, but MSSPs need the right approach to truly benefit.

> Organizations with platforms took 72 fewer days to detect incidents and saw ROI four times better than non-adopters.

> MSSPs need more flexibility to secure multiple client environments, higher visibility standards, and the ability to scale deployments quickly.

> The "Salesforce for cyber" approach lacks customizability and is often provided by potential competitors to MSSPs.

> Our SecOps Cloud Platform offers the same consolidation benefits plus flexibility, visibility, control, and freedom—without vendor competition.

Learn how MSSPs can benefit from platformization: limacharlie.io/blog/mssp-and-t

LIVE WEBINAR: Deploy in minutes, scale without limits - How LimaCharlie transforms MSSP operations

Join Maxime Lamothe-Brassard, Founder of LimaCharlie, on March 26th at 10:00AM PST / 1:00PM EST for a session designed for MSSPs looking to scale operations, reduce overhead, or expand service offerings.

In this webinar, you'll learn:

> How to onboard customers rapidly during emergency response scenarios
> Techniques for maintaining consistent security configurations across all clients
> Methods to unify visibility across multiple EDRs, cloud services, and other sources
> Strategies to streamline deployment with a single package, agent, and pipeline
> Approaches to create new revenue streams without additional vendors or training

Plus, see our updated UI featuring a model MSSP environment in action.

Register now: limacharlie.wistia.com/live/ev

Руководство по выбору SOC: на что обратить внимание

Привет! Меня зовут Михаил Климов, я руководитель команды SOC в компании RED Security. Хочу поговорить про выбор SOC (Security Operation Center) — центра реагирования на инциденты информационной безопасности (ИБ). Вопрос актуален как никогда: в последнее время половина ленты Хабра посвящена кибератакам на бизнес, приняты законы, ужесточающие ответственность компаний за утечку персональных данных. Из-за этого многие директора по информационной безопасности обращаются к вопросу о создании процессов мониторинга событий ИБ в инфраструктуре и максимально быстрого реагирования на возможные кибератаки. Но как выбрать тот самый SOC и определиться с моделью поставок — отдельный вопрос. Я часто сталкиваюсь с тем, что компании начинают строить внутренний центр мониторинга, тратят около года на проект, и все это время защищенность остается на прежнем неудовлетворительном уровне. Затем они понимают, что самостоятельно его реализовать сейчас не могут, и в итоге обращаются к аутсорсингу. И напротив, поработав несколько лет с внешними поставщиками сервисов SOC, переходят к созданию внутреннего центра мониторинга. Как же понять оптимальный вариант поставки для конкретной компании на определенном этапе, чтобы не потратить время и ресурсы впустую, двигаясь методом проб и ошибок? Что правильнее: строить собственный центр реагирования или выбрать одно из готовых решений от многочисленных аутсорсинговых сервис-провайдеров? В этом посте я и мой коллега Ильназ Гатауллин, технический руководитель RED Security SOC, разобрали варианты организации SOC исходя из потребностей и ресурсов бизнеса.

habr.com/ru/companies/ru_mts/a

ХабрРуководство по выбору SOC: на что обратить вниманиеПривет! Меня зовут Михаил Климов, я руководитель команды SOC в компании RED Security. Хочу поговорить про выбор SOC (Security Operation Center) — центра реагирования на инциденты информационной...