Security Engineering for MSPs

Most MSPs...

Do not have a security engineer that they can dedicate full time to hardening security.

But...

Without someone dedicated to security hardening, it's difficult to fix security gaps while trying to: keep the ticket queue from overflowing, clean up a hacked M365 account, set up user training for the quarter, and all the other thousand things MSPs are asked to do.

We help by...

Identifying and fixing vulnerabilities in your tools and clients' environments that actually cause security incidents.

We provide you with a list of gaps that actually matter, how they can be exploited, and a plan with how we recommend fixing them.

Once the plan is approved, we will go and fix the security gap.

We use our experience on the front lines of MSP security, and an attacker perspective (OSCP certified) to do this.

We are currently are offering services 100% for free.

What we check

Here is what we commonly review and fix:

Cloud Defense. We commonly check: ITDR (Petra, SaaS Alerts, Huntress), Conditional Access policies, Entra ID settings, DUO deployments.
Security tool settings and deployment. We commonly check: S1, Threatlocker, Datto EDR, Windows Defender.
Firewall defense. We commonly check: VPN settings, port forwards, firmware update settings, and if admin interfaces are publicly exposed.
Security tool stack. What are you spending money on that is doing nothing? What tools should you add?

Lean Cybersecurity was founded to help busy MSP's secure their clients by providing security engineering as a service.