#26: Cash in the Cyber Sheets - The Dirty 13 - MSP Misconceptions

Episode 26: Cash in the Cyber Sheets - "The Dirty 13: Unpacking MSP Misconceptions Relating toRisk, Security, and Compliance"

In this insightful continuation of the "Dirty 13" series, Episode 26 dives deep into the frequent misunderstandings surrounding IT departments' responsibilities—especially outsourced IT providers like Managed Service Providers (MSPs)—in managing risk, security, and compliance. While many companies assume their IT or MSP handles these crucial areas in full, the reality is often more nuanced and, at times, misleading.

We break down why these misconceptions arise and how they lead to some of the most common audit issues among CPS firms. We clarify where the responsibilities of in-house IT end and where the accountability gaps often lie when third-party providers are involved. With real-world examples and expert insights, this episode highlights how firms can bridge these gaps and ensure a more comprehensive approach to security, risk management, and compliance.

Whether you’re an executive, a member of a compliance team, or an IT professional, this episode provides valuable guidance on navigating the complex web of responsibilities between internal and external IT services. Tune in to learn how to close these loopholes and take control of your firm's risk and compliance strategy!

Explore more topics from the Cash in the Cyber Sheets - Dirty 13 series:

• Poor Password Management
• Bad Data Classification
• Most Common Data Backup Failures
• Most Common Physical Information Security Audit Findings
• Backup Restore Testing
• Incident Response Management
• Supplier Risk Management
• Audit, Logging, & Monitoring
• Inadequate Employee Security Awareness & Training
• Inadequate Risk Management in CPA Information Security Programs
• Avoiding the Most Common InfoSec Mistakes in Financial Firms and CPA Audits