Risk Management for MSPs

OTX Roundtable GRC

OTX Roundtable GRC is a peer group specifically geared to MSPs looking to collaborate to achieve compliance with an established security framework. Members work on completing controls as a group and report progress regularly. Successes are shared, challenges are discussed, and tips and tricks are traded. Members hold each other accountable to progress.

No, It Wasn't a Dream: CMMC is Here!

On Tuesday October 15, 32 CFR, the regulation that defines the CMMC program was officially written to the Federal Register. The CMMC program and all of it requirements are baked! What is not quite finished baking, but will be shortly, is the 48 CFR regulation which defines how the CMMC requirements will appear in contracts issued by the Department of Defense. That is expected to be finalized early to mid-2025. The entire program will be released over four years in distinct one-year phases. Read More…


Recorded Webinar

NSITSP Fireside Roundtable:

Practical Application for CMMC for MSPs:

Joy Beland, Andrew Crawford, and Mark Jennings discuss the opportunities and challenges for MSPs providing services to client in the Defense Industrial Base (DIB). The first RFPs to include the requirement of CMMC certification are expected to be sent out in Q1 of 2025.

  • What are the requirements for MSPs servicing companies that must be certified at CMMC Level?

  • What is the process for certification?

  • What is the timeline for certification?

  • What are the costs?

  • What are the opportunities

Helping Small and Medium Managed Service Providers Manage Risk in Today’s Landscape

The IT Managed Services business has never been more risky. Increasingly MSPs are becoming the target of cyber criminals. They are being used as the conduit to get to their clients. Recently, several MSPs unwittingly became party to the distribution of malware, infecting some of their clients.

Most MSPs have implemented strong security in part throughout their organization but many have not followed a structured security framework designed to eliminate gaps. Why? Time and focus. It is on their list of priorities, but it never makes it to the top of their list. That is because they are trying to go it alone.

OTX Roundtable GRC is a peer group specifically geared to MSPs looking to collaborate to achieve compliance with an established security framework. Members work on completing controls as a group and report progress regularly. Successes are shared, challenges are discussed, and tips and tricks are traded. Members hold each other accountable to progress. A large library of process and policy templates are available to all members.

OTX Roundtable GRC members are provided a custom portal for the tracking and management of their compliance. Tasks and to-dos are kept up to date and progress is reported regularly. Policies and procedures are stored securely within the portal

MSPs participating in OTX Roundtable GRC can take what they have accomplished internally and provide governance and compliance services to their clients. Increasing their value and providing an additional revenue stream.

Events

Linked-in Live

The Business of Cyber Security: Beyond Nerdspeak

Presented by OTX Partners, Orbital Fire, and Empath

Thursday February 22, 2024 2:00 PM ET

While cybersecurity offers endless opportunities for MSPs, it also introduces a whole host of new risks and challenges.

☄️ Unrealistic customer expectations

☄️ Skyrocketing tool licensing fees

☄️ Talent shortages

☄️ Liability due to incidents

👉 And if you’re like most - you're losing money on it.

But the problem isn't your technology – it's your business model.

There is tremendous opportunity for MSPs in cybersecurity but capturing it will require an understanding of your core competencies, finances, culture, process and more.

Join Kyle Christensen of Empath, Reg Harnish of OrbitalFire, and Mark Jennings of OTX Partners as they discuss how smart MSPs can make the leap to a new way of thinking about cybersecurity.

With deep expertise in building profitable MSPs and legendary cybersecurity know-how, this trio will help MSPs figure out the right questions to ask when considering how to best launch – or make profitable - your cybersecurity practice.


Get in Touch

Let us help you manage your risk and achieve compliance.