Virtual Blue

Having worked with many Managed Service Providers on their Cybersecurity over the past 3 years, we have found that one thing is common to them all. They all struggle to have up to date Cyber intelligence on their clients.

What does that mean? Well, while most MSPs have automated patching and auto updates on major applications and browsers. The may have Endpoint protection and DNS management along with Email filtering and Bitlocker Encryption as part of their Security stack. So they have every angle covered?

Our experience is that there are still many vulnerabilities and weaknesses in their clients systems. When we audit MSP clients networks for Cyber Essentials Plus or a Compromise Assessment, in nearly every case we find some vulnerabilities that need attention.

This is nothing new and of course new vulnerabilities are discovered every day, the issue here is that many MSPs and their clients have no regular checking or discovery system for these issues. In larger organisations a group of professionals that do this are called the Blue Team.

This is why we created Virtual Blue.

Virtual Blue is a team of skilled Cybersecurity professionals that can be hired by MSPs to produce regular reports on their clients Cybersecurity posture, a virtual Blue Team for MSPs.

With this information, MSPs can advise their clients of the biggest threats they face and how to fix or mitigate the issues or include this intelligence into their security stack to give even greater service to their clients.

What’s Included in the Virtual Blue Service?

Internal vulnerability management service (Windows, Mac, Linux) - This will check for every known vulnerability on these devices via our lightweight discovery agent. If the device is online we can monitor it.

External vulnerability scanning service - This will check for issues associated with your WAN IP address. Common issues we find are unnecessary open ports, Firmware out of date or devices end of life.

Basic Website Security Scan - This service checks for known website vulnerabilities and exploits. We call it a basic scan as Website security can be highly complex, but you need to know if the website has major flaws or not. We can supply in depth web or application testing separately.

Email Sanity Check - We check your SPF and DMARC for compliance and effectiveness, every month.

Monthly Cybersecurity Report - We supply an individual white labelled report on all the services above that you can supply to your client or include as part of your QBR or current monthly reporting. Further details included are:

• Threat analysis

• Exploitability

• Impact and suggested solutions