Know What To Do In The Event Of Breach

One of the mistakes many MSPs and solution providers make is not having  a concrete plan in place for when a breach happens at one of their clients, said McDonald, who suggests that MSPs and solution providers should invest in an incident response team and have strict procedures in place in the event of a breach, as mistakes early on could harm the forensic process and hurt future law enforcement efforts (or even get the company sued). He said it’s important to have individual credentials in place as well as strict logs and notetaking of all changes made in the event of a lawsuit.

On top of that, McDonald said the most important thing to not do in the event of a breach is ignore it or sweep it under the rug. Doing that could result in massive penalties and potential lawsuits, he said.