Cyber Security Business

IRJ

@JaredBusch said in Cyber Security Business:

Not sure what the slider is supposed to do here on the Contact page.

I was doing some testing, it should be cleared out of the cache by now.

JaredBusch

@IRJ said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ So are you open to people like me having you run your basic Vulnerability Analysis and not bothering the site again?

Yes, and that price on the site is a retail price, so if you resell the service you get a better price.

We do not resell, so you would be getting a direct customer, just facilitated by us.

Carnival Boy

@FiyaFly said in Cyber Security Business:

I would change the wording on this to "...Small businesses don't always have the budget for sufficient security to prevent these attacks"

I know a one-man IT shop or two who might take offense to that original wording.
Marketing. Saying the same thing as the other guy, but saying it better.

Me to.

It currently says "Many small companies skimp on cyber security because of costs. " and "Small business generally have little to no security. "

This might be true (not in my limited experience, but it might be), but aren't you at risk of offending your potential customers by making the claim? Kind of "we think you're probably crap, so employ us"

scottalanmiller

@Carnival-Boy said in Cyber Security Business:

@FiyaFly said in Cyber Security Business:

I would change the wording on this to "...Small businesses don't always have the budget for sufficient security to prevent these attacks"

I know a one-man IT shop or two who might take offense to that original wording.
Marketing. Saying the same thing as the other guy, but saying it better.

Me to.

It currently says "Many small companies skimp on cyber security because of costs. " and "Small business generally have little to no security. "

This might be true (not in my limited experience, but it might be), but aren't you at risk of offending your potential customers by making the claim? Kind of "we think you're probably crap, so employ us"

You run that risk by offering the service at all. A potential customer is a potential customer because they know that they are likely crap, though.

Dashrender

I see it a bit like - you don't want to be like all the other small businesses who don't care about security, do you? So employ us so you're not.

Carnival Boy

@scottalanmiller said in Cyber Security Business:

A potential customer is a potential customer because they know that they are likely crap, though.

Really? Maybe I'm not their target market.

IRJ

I agree that the statement is generalizing, but no one will debate the fact that easily more than half of SMB's lack any real IT security. Another thing is there will always be holes do the dependency on vendors releasing patching and of course there is always the red team out the exploiting holes.

IRJ

@Carnival-Boy said in Cyber Security Business:

@FiyaFly said in Cyber Security Business:

I would change the wording on this to "...Small businesses don't always have the budget for sufficient security to prevent these attacks"

I know a one-man IT shop or two who might take offense to that original wording.
Marketing. Saying the same thing as the other guy, but saying it better.

Me to.

It currently says "Many small companies skimp on cyber security because of costs. " and "Small business generally have little to no security. "

This might be true (not in my limited experience, but it might be), but aren't you at risk of offending your potential customers by making the claim? Kind of "we think you're probably crap, so employ us"

Exterminators sell their services to people that have need pests removed. They base their advertising based on customers that have the biggest need for their service. You may not always be over run with ants, but you want to have a service that can handle that kind of job. Whether you have a complete infestation or just need a layer barrier laid around your house you still need exterminators.

IRJ

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

JaredBusch

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Dashrender

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Sadly, the client isn't inclined to believe that anymore than they believed you - and why should they? you bringing in another vendor to prove what you've been saying?

Really, if they want a real possibility that they'll believe something that client needs to go out, find someone completely on their own, give that security company as little information as possible and simply say - we want a security audit, and then see if those results come back the same as what you've been suggesting.

Deleted74295

But a real security company charges for that. A fake security company will do it for free and the results will be meaningless.

Dashrender

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

In the SMBs I've dealt with, I've found the same... Most are completely unwilling/uncaring about security - who would want to steal my data/delete my data. Oddly enough - it's just not happening to enough people to change the culture.

It's the same reason home users don't care - there isn't enough pain in not caring yet. Those you run into that do backups often do it because they lost data at one point, those that have good passwords were probably hacked at one time (and a hacking that caused them real pain, not meh.. oh well, so what kind of pain).

JaredBusch

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Sadly, the client isn't inclined to believe that anymore than they believed you - and why should they? you bringing in another vendor to prove what you've been saying?

Really, if they want a real possibility that they'll believe something that client needs to go out, find someone completely on their own, give that security company as little information as possible and simply say - we want a security audit, and then see if those results come back the same as what you've been suggesting.

What? No.

1. I am not a vendor. I am a consultant. they pay me to recommend people.
2. I am not bringing in a vendor. I am bringing in a specialist.

Dashrender

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Sadly, the client isn't inclined to believe that anymore than they believed you - and why should they? you bringing in another vendor to prove what you've been saying?

Really, if they want a real possibility that they'll believe something that client needs to go out, find someone completely on their own, give that security company as little information as possible and simply say - we want a security audit, and then see if those results come back the same as what you've been suggesting.

What? No.

1. I am not a vendor. I am a consultant. they pay me to recommend people.
2. I am not bringing in a vendor. I am bringing in a specialist.

Why would they believe a specialist over you - they are already paying you as a specialist in IT.

JaredBusch

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

In the SMBs I've dealt with, I've found the same... Most are completely unwilling/uncaring about security - who would want to steal my data/delete my data. Oddly enough - it's just not happening to enough people to change the culture.

True, they do not consider it a joke. They do not consider it at all.

JaredBusch

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Sadly, the client isn't inclined to believe that anymore than they believed you - and why should they? you bringing in another vendor to prove what you've been saying?

Really, if they want a real possibility that they'll believe something that client needs to go out, find someone completely on their own, give that security company as little information as possible and simply say - we want a security audit, and then see if those results come back the same as what you've been suggesting.

What? No.

1. I am not a vendor. I am a consultant. they pay me to recommend people.
2. I am not bringing in a vendor. I am bringing in a specialist.

Why would they believe a specialist over you - they are already paying you as a specialist in IT.

They are paying me for the truth. I tell them that they need to have a specialist in Security look at things.

Dashrender

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Sadly, the client isn't inclined to believe that anymore than they believed you - and why should they? you bringing in another vendor to prove what you've been saying?

Really, if they want a real possibility that they'll believe something that client needs to go out, find someone completely on their own, give that security company as little information as possible and simply say - we want a security audit, and then see if those results come back the same as what you've been suggesting.

What? No.

1. I am not a vendor. I am a consultant. they pay me to recommend people.
2. I am not bringing in a vendor. I am bringing in a specialist.

Why would they believe a specialist over you - they are already paying you as a specialist in IT.

They are paying me for the truth. I tell them that they need to have a specialist in Security look at things.

@JaredBusch said in Cyber Security Business:

I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

If you need to hire someone else to prove what you've been telling them they need to do, it sounds like they don't trust you, that's what I was saying.

JaredBusch

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Sadly, the client isn't inclined to believe that anymore than they believed you - and why should they? you bringing in another vendor to prove what you've been saying?

Really, if they want a real possibility that they'll believe something that client needs to go out, find someone completely on their own, give that security company as little information as possible and simply say - we want a security audit, and then see if those results come back the same as what you've been suggesting.

What? No.

1. I am not a vendor. I am a consultant. they pay me to recommend people.
2. I am not bringing in a vendor. I am bringing in a specialist.

Why would they believe a specialist over you - they are already paying you as a specialist in IT.

They are paying me for the truth. I tell them that they need to have a specialist in Security look at things.

@JaredBusch said in Cyber Security Business:

I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

If you need to hire someone else to prove what you've been telling them they need to do, it sounds like they don't trust you, that's what I was saying.

I have been telling them things based on my own knowledge, but I am not a specialist in Cyber Security. Thus the recommendation.

Dashrender

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@Dashrender said in Cyber Security Business:

@JaredBusch said in Cyber Security Business:

@IRJ said in Cyber Security Business:

@scottalanmiller and @JaredBusch you guys see alot of SMB customers. It it a safe statement to say that most are not IT security focused?

Gods no. Security is a joke to them. I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

Sadly, the client isn't inclined to believe that anymore than they believed you - and why should they? you bringing in another vendor to prove what you've been saying?

Really, if they want a real possibility that they'll believe something that client needs to go out, find someone completely on their own, give that security company as little information as possible and simply say - we want a security audit, and then see if those results come back the same as what you've been suggesting.

What? No.

1. I am not a vendor. I am a consultant. they pay me to recommend people.
2. I am not bringing in a vendor. I am bringing in a specialist.

Why would they believe a specialist over you - they are already paying you as a specialist in IT.

They are paying me for the truth. I tell them that they need to have a specialist in Security look at things.

@JaredBusch said in Cyber Security Business:

I am talking to my boss about paying for you to come in to one of our clients to prove how much should be done as proof of what we have been saying.

If you need to hire someone else to prove what you've been telling them they need to do, it sounds like they don't trust you, that's what I was saying.

I have been telling them things based on my own knowledge, but I am not a specialist in Cyber Security. Thus the recommendation.

I suppose if at the same time you are presenting the suggestions (not some time later to try to make them agree with you) that would be one thing, but it sounds like you are seeking this audit as a way to to say - see, I told you need this, now do it.