Improving the Cybersecurity of Managed Service Providers


View As Web Page


MSP Cybersecurity: Recommendations to Protect Against Ransomware and Other Data Loss Incidents

MSP network system

Many small- and medium-sized businesses use managed service providers (MSPs) to remotely manage their organization’s IT infrastructure, cybersecurity, and related business operations. As a result, MSPs have become an attractive target for cyber criminals. When an MSP is vulnerable to a cyber attack, it also increases the vulnerability to the small- or medium-sized businesses an MSP supports.

The NCCoE published a quick planning guide for MSPs to minimize the impact of data loss incidents—such as ransomware, hardware failure, or accidental or intentional data destruction. The guide provides recommendations to MSPs to conduct, maintain, and test backup files for themselves and their clients.

MSPs can customize the recommendations to fit their cybersecurity needs. The publications provided at the link below offer implementation recommendations, a reference architecture, and details specific technologies/capabilities MSPs should consider deploying.

For more information, visit the NCCoE’s Improving Cybersecurity of Managed Service Providers project page. This information is also available on the NIST Small Business Cybersecurity Corner.


National Cybersecurity Center of Excellence