In this diagram, it’s specified how SOS Support works, as well as all the processes of our work, and our intention with this is that clients could get our MSP agreement, so they’ll be informed
Minimum Standards:
Business Grade Managed Antivirus
Patches installed within 7 days, Servers within 30 days
Non-critical and 3rd party OS and Device patches installed within 30 days
Critical Firmware/Driver updates installed within 7 days
Critical data backed up daily, tested quarterly at a minimum
All systems storing sensitive data must be wiped to ISO-27001 standards upon decommission
All portable devices storing sensitive data must use disk encryption technologies
All USB/CD/DVD’s containing sensitive information must be encrypted
Additional Standards:
All systems not behind the Business Managed Firewall must have Anti-Breach/Anti-Intrusion software
All networked computers to have real-time Suspicious login detection, Automated daily investigations and remediations, and PII/PHI detection.
All shared files/folders must be in a security-driven solution such as Windows Server File Server, Datto Workplace, or equivalent.
All email accounts must have 2-Factor Authentication enforced (2FA)
All industry-specific SaaS software (internet-based production systems) must have 2FA enforced
Email providers must match compliance requirements. We have found Microsoft 365 and Gsuite to be the only reliable reputable services to standardize upon.
Security Awareness Training campaigns to be actively deployed to train employees and users on phishing attacks
All endpoints are monitored by a 24/7 solution that monitors resources: CPU, Storage, Memory utilization
Production Server’s to be pro-actively managed in a plan with at least once/month of after-hours maintenance (preferably twice)
Enhanced Network Monitoring to be enabled on all networks with over 50 devices
Email Encryption Services with Enterprise SPAM filtering