What MSPs Miss on Every Network (EP 987)
If you’re still turning off noisy alerts and hoping your basic patching policies are “good enough,” this episode is your wake‑up call. Frank and I talk tough love for MSPs: knowing every IP, understanding real exploitability, documenting what you do and don’t cover, and having the guts to walk away from clients who refuse to secure their environment.
This episode is all about the gap between what we say we're delivering and what's really happening on our clients' networks. I brought in Frank Raimondi of IGI Cybersecurity to make the case for a proactive, left-of-boom approach to cybersecurity — treating network health the way a doctor treats a patient: ongoing monitoring, honest conversations, and a real duty of care. Whether you're dealing with noisy alerts, nervous about what a scan might turn up, or trying to figure out where AI fits into your security stack, Frank and I gave you the straight talk you need to hear.
Chapters
- 00:14 Welcome and Episode Setup
- 00:26 Why Cyber Hygiene, Patching, and Pen Testing Still Fail
- 01:10 Introducing Guest Frank Raimondi from IGI Cybersecurity / Nodeware
- 02:00 Nodeware Updates: PCI DSS and New Third‑Party App Patching
- 02:31 Defining Cyber Hygiene and “Left of Boom” for MSPs
- 03:43 Knowing Every Device: Network Visibility and Exploitable Surfaces
- 05:39 Tools, Network Monitoring, and Real‑World MSP Use Cases
- 07:40 Patch Management Gaps and Third‑Party Application Vulnerabilities
- 09:09 Where MSPs Fall Short and the “Ostrich in the Sand” Problem
- 12:11 Is It the Tools, the Process, or the People? Tough Love for MSPs
- 15:09 Health Analogy: Vulnerability Management vs. Pen Testing
- 17:31 Duty of Care, Client Risk, and MSP Responsibility
- 21:07 Firing Bad Clients, Co‑Managed Environments, and Open RDP
- 24:08 Getting Clear in MSAs, SOWs, and What You Really Cover
- 25:38 AI as the Next Battlefield and New Internal Attack Surfaces
- 26:25 Frank’s Journey into Security and the Channel
- 28:32 Looking 12–24 Months Ahead for MSP Security and AI
- 30:38 Closing Thoughts, Events, and How to Connect with Frank
Guest: Frank Raimondi
- IGI Cybersecurity https://www.igicybersecurity.com
- Nodeware: https://nodeware.com
- LinkedIn: https://www.linkedin.com/in/frankraimondi
Companies / Vendors / Products Mentioned
- Domotz: https://www.domotz.com
- Auvik: https://www.auvik.com
- MSP Summit (event): https://channelpartnersconference.com/
- Gemini (Google Gemini AI): https://gemini.google.com
- ChatGPT (OpenAI): https://chat.openai.com
=== SPONSORS:
- Livestream Partner, ThreatLocker: https://www.itbusinesspodcast.com/threatlocker
- Technology Partner, NetAlly: https://www.itbusinesspodcast.com/netally/
- Technology Partner: Bvoip: https://www.itbusinesspodcast.com/bvoip
- Travel Partner: TruGrid: https://www.itbusinesspodcast.com/trugrid
- Digital Partner, Designer Ready: http://itbusinesspodcast.com/designerready
=== SHOW MUSIC:
- Item Title: Upbeat & Fun Sports Rock Logo
- Item URL: https://elements.envato.com/upbeat-fun-sports-rock-logo-CSR3UET
- Author Username: AlexanderRufire
- Item License Code: 7X9F52DNML
=== Connect with Uncle Marv
🌐 Website: https://www.itbusinesspodcast.com/
🎙 Host: Marvin Bee
🛒 Uncle Marv’s Amazon Store (gear & tools I recommend): https://amzn.to/3EiyKoZ
☕ Support the show: https://ko-fi.com/itbusinesspodcast
If you found value in this episode, share it with another MSP, IT provider, or tech entrepreneur. Your support helps keep practical, no-nonsense IT business conversations coming every week.
VP, Channel Alliances & Partnerships
Strategic Channel Marketing Professional passionately contributing experienced knowledge to help others make sense of channels and clarify their efforts by bringing together organizations to develop strategies and programs producing the highest value for all. If it's not a win-win situation, it needs to be.
Currently working for Nodeware/IGI Cybersecurity, focused on delivering cybersecurity solutions to partners to help enhance their customers' cyber hygiene and risk reduction.
