Endpoint Detection and Response (EDR), AI Security
Seth Byrnes, Virtual CIO, Convergence Networks
Definitely EDR, SIEM/SOC. For managed SIEM/SOC, most businesses don’t have the security skill to actually be able to do that. So you’ve got to hire a team that actually knows what they’re doing and leverage AI at the same time.
AI applications are huge, especially in the security space. Every MSP over the next year should take time to secure themselves [first], and then secure their clients. We see a lot of supply chain issues, and that’s going to be bigger and bigger. Since MSPs are part of that supply chain, it’s way more lucrative to ransomware an MSP, where you can get 7,000 endpoints just like that.
Most of the big players are already using AI in the backend, providing that information to security teams. They’re bringing those alerts to the forefront. And then, allowing engineers to actually go through and say, “I see what this did, and here’s a process that it affected,” or “Here’s what it did on the system.” And then, hopefully, the engineers come back into IT and say, “Hey, there’s a hole, please figure out the best way to fix it.”