Jared and Mike talk with guests (and fellow PitchIT participants) HitWit and Palisade! We'll discuss the best way to engage and convert clients using a variety of marketing and sales channels (and cutting-edge tech!)

Want to get your own compliance or security questions answered? Ask them at ⁠https://blacksmithinfosec.com/ask

We’re recording this episode just shy of ChatGPTs 3rdanniversary, so it seemed fitting to do an AI episode. I’m sure these answers will age well…

“There are so many AI-powered compliance tools being advertised. Are they really capable of managing compliance, or do they leave hidden risks?”

“If AI can’t replace humans, where does automation actually help in compliance? What tasks can safely be automated without losing oversight?”

Want to get your own questions answered? Go to https://blacksmithinfosec.com/ask!

Replay of a live episode we recorded with Michael Cannady from https://liongard.com where we broke down the driving forces behind the demand for compliance services. Are regulations rolling back? Are end-users themselves picking up the slack and demanding cybersecurity that fits a known framework?

Discussion topics: Compliance and governance software for MSPs, policy reviews, and the best framework for SMBs.

Want to get your own compliance or security questions answered? Ask them at ⁠https://blacksmithinfosec.com/ask

Replay of a live recording we did with veteran vCISO Mike Ellerhorst from NTM Advisory. In this episode, we broke down some of the common mistakes MSPs make when running compliance programs for their clients and, more importantly, how they can fix or prevent those mistakes from happening.

Discussion topics: Change fatigue, client relations and QBRs, and why building your MSP's security program around frameworks (i.e. NIST CSF) is what mature providers are doing.

Want to get your own compliance or security questions answered? Ask them at ⁠https://blacksmithinfosec.com/ask

Is your compliance offering just for show? Let's fix that.

Join us for a straight-shooting look at turning compliance requirements into real security wins for your MSP. We'll cut through the noise of checkbox-ticking solutions that promise the world but leave your clients vulnerable, show you how to build compliance that actually means something, and reveal why MSPs who get this right are laughing all the way to the bank.

Time to make compliance work for you, not the other way around.

In this bonus episode, we are re-airing a previously held live webinar with featured guest Bryan Lukralle, Chief Strategy Officer at CTS.

Want to get your questions about compliance answered? Head to https://blacksmithinfosec.com/ask

This week, we're tackling two related questions about Risk Management Frameworks (RMFs).

“I keep hearing people refer to different security frameworks as ‘RMFs’. What is an RMF and how is it different from a security framework?”

“Can you give some real-world examples of how RMF principles (such as user audits and access control) can scale down for a small business without feeling overwhelming? They seem so bureaucratic and time consuming and, honestly, time is precious!”

Want to get your own compliance or security questions answered? Ask them at https://blacksmithinfosec.com/ask

This week, Mike and Jared tackle 2 listener questions.

First, a question from an anonymous user: I’ve heard a lot about a “CIA triad”. What is that, and how does it apply to compliance? Is this some sort of spy thing?Second, a question from a California-based MSP: A lot of my clients are doctors, dentists, and restaurants. Many of them operate on razor thin margins and tell me they can’t afford to be compliant. What should I tell them?Want to get your own questions answered? Head to https://blacksmithinfosec.com/ask