Beginning this month, February 2024, Microsoft will start enforcing certain Conditional Access policies automatically for all Microsoft 365 and Office 365 customers. More details are provided below.

In today's digital landscape, small and medium-sized businesses (SMBs), driven by digital transformation and cybersecurity needs, heavily rely on Managed IT Service Providers (MSPs). The crucial question is whether your current MSP can propel your organization forward in this fast-paced environment. With varying capabilities in the MSP market, evaluating your provider is pivotal for strategic decision-making.

Proactively defending against cyberattacks and incidents within your organization is the main goal of any good cybersecurity strategy. But what happens WHEN, not IF, your company experiences a cyber incident?

The Department of Defense (DoD) officially published the final rule for the Cybersecurity Maturity Model Certification on October 15, 2024. CMMC compliance will start appearing in defense contracts as early as Q225 and be a requirement in all contracts by October 1, 2026.

Systems Engineering is aware of the vulnerabilities recently found in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). Exploits on unmitigated appliances have been observed. 

Systems Engineering is aware of the Fortinet FortiOS & FortiProxy - Improper authorization for HA requests vulnerability, CVE-2023-44250. 

When considering a managed service provider (MSP) for your business, it's important to evaluate their approach to securing sensitive data. Conducting due diligence to ensure that the MSP has the necessary controls in place to protect your sensitive information is highly recommended.