Sunsets & Snowdrifts Cybersecurity Podcast: Episode 7 – Cybersecurity Awareness Month

Cybersecurity Awareness Month: Insights from the Ostra Podcast

In our latest episode of the “Sunsets & Snowdrifts” podcast, hosts Evan and Mike discuss key cybersecurity concerns, coinciding with October’s designation as Cybersecurity Awareness Month. This month serves as a vital reminder for individuals and organizations to prioritize online safety and security practices.

Key Themes from the Episode

Social Engineering and AI Tools
The podcast kicks off with a focus on the rising sophistication of social engineering tactics, particularly those enhanced by AI. These advanced attacks go beyond traditional scams, utilizing personalized information to deceive targets effectively.

Back to Basics
Evan and Mike stress the importance of cybersecurity fundamentals, such as asset management and communication. They argue that these basics are essential for building a strong defense against emerging threats.

The Role of Communication

Effective Messaging
Evan highlights how crucial clear communication is in cybersecurity. Tailoring messages for different audiences helps demystify complex concepts, ensuring that everyone understands their role in maintaining security.

Accountability in Cybersecurity

Industry Responsibility
Our hosts express concern over the lack of accountability within the cybersecurity industry. They advocate for greater responsibility from companies that handle sensitive data, especially following data breaches.

Fostering Curiosity

Asking “Why?”
A significant part of their discussion revolves around the importance of questioning established practices in cybersecurity. This culture of curiosity encourages individuals, especially newcomers, to seek deeper understanding and challenge norms.

Personal Risk Tolerance

The episode also touches on how personal risk tolerance influences individual security practices. The hosts encourage informed decision-making based on one’s comfort level with risk, particularly regarding social media use.

Cybersecurity Awareness Month

As Cybersecurity Awareness Month unfolds, Evan and Mike remind listeners of recent events, including FR Secure’s annual “Hacks and Hops” conference and discuss the launch of Evan’s new podcast, “Infosec Insanity.”

This episode not only aligns with the goals of Cybersecurity Awareness Month—promoting safe online practices—but also provides actionable insights for navigating the complexities of cybersecurity in an increasingly digital world.

As we engage in this month-long initiative, it’s an opportune time to reflect on our cybersecurity habits and implement best practices to protect ourselves and our communities.

Until next time – Happy Cybersecurity Awareness Month – and stay secure!

The Ostra Team

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Want to stay ahead of the curve in the trends in cybersecurity? Subscribe to the Sunsets & Snowdrifts podcast for lots more insightful discussions and expert advice.

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

Sunsets & Snowdrifts Cybersecurity Podcast: Episode 6 – Looking back on 2024 (so far) and Ahead to 2025

Podcast Summary: Looking Back on 2024, What to Expect in Q4, and Preparing for 2025

In Episode 6 of the Ostra Podcast, titled “Looking back on 2024 (so far) and Ahead to 2025,” Kennedy, Evan and Frank, our salty and seasoned cybersecurity professionals delve into the state of cybersecurity.

They focus on what to expect in Q4 and how to prepare for 2025. This episode is a must-listen for those seeking to stay ahead in a constantly evolving digital landscape.

Key Discussion Points:

Crowdstrike Incident

The podcast starts with a discussion of the recent Crowdstrike incident, analyzing what threat actors have learned from it and emphasizing the importance of understanding adversaries’ tactics, techniques, and procedures (TTPs) to better anticipate future threats. They argue that while high-profile incidents like Crowdstrike can be a distraction, businesses need to focus on more than just the immediate threat.

The Distraction Dilemma

One of the central themes of the episode is the concept of distraction in cybersecurity. Our hosts caution that while everyone is focused on high-profile breaches, other vulnerabilities may be overlooked. They stress the importance of a holistic approach to cybersecurity, where businesses are not just reactive but proactive in their defense strategies.

Preparing for 2025

Mid-sized companies are advised to start preparing for 2025 now. The hosts outline several actionable steps that these companies can take to bolster their cybersecurity posture:

  • Performing Regular Audits: Regularly auditing security measures to identify and mitigate vulnerabilities.
  • Employee Training: Investing in cybersecurity awareness training for employees to recognize phishing attacks and other social engineering tactics.
  • Incident Response Plans: Developing and regularly updating incident response plans to ensure quick and effective action in case of a breach.
  • Leveraging Advanced Technologies: Utilizing AI and machine learning to detect and respond to threats in real time.

Current Focus of Cybersecurity Teams

In the final segment, the hosts discuss what cybersecurity teams should focus on to protect SMBs as we move into Q4 and beyond. Key areas of focus include:

  • Enhanced Monitoring: Implementing robust monitoring systems to detect suspicious activities early.
  • Patch Management: Ensuring all software and systems are up-to-date with the latest patches.
  • Zero Trust Architecture: Adopting a Zero Trust approach to network security, where no entity inside or outside the network is trusted by default.

Conclusion

The episode concludes with a strong call to action for businesses to take a proactive approach to cybersecurity. By focusing on regular audits, employee training, and advanced technologies, businesses can better prepare for the challenges of Q4 and beyond.

Cybersecurity professionals, small to mid-sized businesses, and IT managers will find this episode of the Ostra Podcast an invaluable resource. It’s a comprehensive guide for staying ahead of the curve in an increasingly complex cybersecurity landscape, making it a worthwhile investment of your time.

Until next time – stay secure!

The Ostra Team

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Want to stay ahead of the curve in the trends in cybersecurity? Subscribe to the Sunsets & Snowdrifts podcast for lots more insightful discussions and expert advice.

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

hacks & hops

Cybersecurity Insights: Hacks & Hops Panel Discussion in St. Paul

The recent Hacks & Hops cybersecurity event in St. Paul, Minnesota, featured an engaging panel discussion that brought together industry experts to explore critical issues in the field.

The panel, which was a special live audience episode of the Sunsets and Snowdrifts podcast, delved into ethical dilemmas, war stories, and the importance of mental health in the cybersecurity sector.

Ethical Considerations in Cybersecurity

The panel kicked off with a discussion on the ethical challenges faced by professionals in the information security field. Evan Francen, founder of FRSecure, and Michael Kennedy, founder of Ostra, shared their perspectives on the delicate balance between disclosure and privacy. The conversation highlighted the complexities of ethical hacking and the responsibility that comes with uncovering vulnerabilities.

Audience Participation:

Hacks & Hops attendees were encouraged to share their own ethical dilemmas, fostering an interactive dialogue that brought real-world scenarios to the forefront.

War Stories: Learning from the Trenches

Megan Larkins, Director of Consulting Services, and Brad Nigh, Consulting Strategist, captivated the audience with anecdotes from their careers, showcasing the unpredictable nature of cybersecurity incidents. These war stories not only entertained but also provided valuable lessons for professionals at all levels.

Key Takeaways:

  • The importance of adaptability in facing unusual challenges
  • How to apply lessons learned from past incidents to improve future responses
  • The critical role of teamwork in resolving complex security issues

Mental Health in InfoSec

A significant portion of the discussion was dedicated to the often-overlooked topic of mental health in the cybersecurity industry. The panelists addressed the high-stress environment that InfoSec professionals operate in and emphasized the need for balance and support.

Strategies Discussed:

  • Implementing mental health resources in the workplace
  • Encouraging open dialogue about stress and burnout
  • Promoting work-life balance to prevent burnout

Audience Engagement

The interactive nature of the panel allowed for a rich exchange of ideas. Audience members posed thought-provoking questions, ranging from specific technical challenges to broader industry trends. This engagement underscored the collaborative spirit of the cybersecurity community and the shared commitment to addressing evolving threats.

Conclusion

The Hacks and Hops panel discussion proved to be an invaluable platform for knowledge sharing and professional growth. By addressing ethical dilemmas, sharing war stories, and focusing on mental health, the event provided a holistic view of the challenges and opportunities in the cybersecurity landscape.

As the field continues to evolve, forums like these play a crucial role in shaping the future of information security and fostering a resilient, ethical, and mentally healthy workforce.

Until next time – stay secure!

The Ostra Team

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Want to stay ahead of the curve in the trends in managed cybersecurity? Subscribe to the Sunsets & Snowdrifts podcast for lots more insightful discussions and expert advice.

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

Ostra Cybersecurity Expands – Hires Jackson Buelow

Jackson Buelow hired as Account Executive to serve Ostra’s growing base of SMB clients

Ostra Cybersecurity, a leading provider of world-class cybersecurity solutions for businesses of all sizes, recently welcomed Jackson Buelow as an Account Executive.

This new addition to the business development team is the latest example of Ostra’s growth while furthering its mission to protect small and medium-sized businesses (SMBs). 

As an Account Executive, Jackson will focus on understanding and addressing the unique needs of Ostra clients to provide managed cybersecurity solutions they can rely on.

With a background in IT services and data protection, Jackson will work closely with clients to identify and address their cybersecurity gaps while also supporting customers referred by Ostra’s growing Channel Partner network.  

“We are thrilled to welcome Jackson Buelow to this role that is integral to Ostra’s growth,” said CEO Andrew Tewksbury. “With his extensive experience in the cybersecurity sector, we are confident in Jackson’s ability to help our clients achieve superior protection for their businesses.” 

With a focus on being the Trusted Cybersecurity Team for its clients and partners, Ostra’s market niche is ensuring that top-notch data security solutions are accessible for SMBs. Its fully managed cybersecurity solutions fill cybersecurity gaps with a holistic approach for today’s business owners and IT leaders. 

Jackson graduated from the University of St. Thomas Opus College of Business with a degree in Entrepreneurship. Before joining Ostra, he worked as a Channel Account Manager for a data protection and business continuity solutions company, overseeing 300 MSP accounts and driving growth opportunities across multiple regions. He looks forward to building authentic relationships while serving as a trusted resource for Ostra’s growing base of SMB clients. 

“My previous experience ignited my passion for cybersecurity,” Jackson said. “I am excited to contribute to Ostra’s ongoing success by helping our clients achieve optimal security.” 

Connect with Jackson on LinkedIn or email him at jackson.buelow@ostra.net

Sunsets & Snowdrifts Cybersecurity Podcast: Episode 5 – Truth in Cyber

Discussion: Truth In Cyber

In Episode 5 of the Sunsets & Snowdrifts podcast, “Truth In Cyber,” hosts Frank, Evan, and Kennedy discuss pressing issues within the cybersecurity industry.

Our experts begin their discussion on the subject of the recent CrowdStrike outage, which disrupted Windows machines and even grounded flights globally. Instead of speculating on the cause, the hosts focus on the industry’s collective response to such incidents, emphasizing the importance of transparency and truth.

Cybersecurity News

The episode begins with a significant incident: the recent CrowdStrike outage that rattled the industry. It’s emphasized that the focus should be on collectively analyzing the industry’s response rather than getting caught up in speculation about the causes. This sentiment leads to sharing unsettling experiences with misleading claims and predatory sales tactics.

There is a reflection on the alarming frequency with which companies assert, “that would never happen to us,” only to later find themselves victims of security incidents. This exchange lays the groundwork for a broader discussion on the imperative for transparency within cybersecurity practices.

The Need for More Transparency and Truth in Cyber

As the conversation flows, predatory tactics that are unfortunately familiar in the industry are addressed. A critical examination of why these stories keep emerging is invited. The concept, “Where There’s Mystery, There’s Margin,” is introduced, highlighting how a lack of clarity often leads to exploitation.

The discussion goes on to examine how the failure of vendors to adequately support mid-size Managed Service Providers (MSPs) and Small and Medium-sized Businesses (SMBs) has compromised security for smaller entities, particularly due to the focus on larger enterprises.

Fixing a Broken Industry

Continuing the dialogue, the consequences of treating cybersecurity products as mere commodities are assessed. It is argued that this commodification overlooks the unique challenges faced by MSPs and SMBs. A pervasive tendency within the industry to market cyber products in isolation neglects the limited resources smaller organizations possess to manage them.

Additionally, the lack of distinction between Information Security (IS) and Information Technology (IT) adds complexity for smaller businesses attempting to articulate their cybersecurity needs.

Call to Action & Wrap Up

As the episode draws to a close, core principles guiding SecurityStudio and FRSecure are emphasized, calling for an urgent shift within the industry. An ambitious initiative, “Truth In Cyber,” is shared, designed to nurture a culture of transparency and accountability among partners, competitors, and peers.

This initiative highlights a collective commitment to enhancing industry standards. In the final messages, listeners are encouraged to get involved with the Truth In Cyber movement at TruthInCyber.org, advocating for everyone to sign the pledge and promote a more open and honest cybersecurity environment. The journey toward accountability begins now, and every voice plays a vital role.

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Want to stay ahead of the curve in the trends in cybersecurity? Subscribe to the Sunsets & Snowdrifts podcast for lots more insightful discussions and expert advice.

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

Sunsets & Snowdrifts Cybersecurity Podcast: Episode 4 – Cybersecurity Compliance

Cybersecurity Compliance and How to Avoid the Pitfalls of a Checkbox Mindset

In this latest episode of our cybersecurity podcast, we delve into the crucial topic of cybersecurity compliance and why it’s not just about ticking boxes.

It’s important to move beyond this mentality and understand the true implications of compliance. Here’s a quick recap of the key points discussed, aimed at motivating you to rethink your approach to cybersecurity compliance.

Hosted by Frank Gurnee, this episode features enlightening insights from Michael Kennedy, CEO of Ostra Security, and Evan Francen, Founder of SecurityStudio.

Understanding Compliance in Cybersecurity

The episode begins by exploring what compliance truly means in the cybersecurity realm. It emphasizes that compliance is often misunderstood as synonymous with security. However, there’s a stark difference between adhering to the law and establishing company policies that genuinely protect your organization.

For instance, simply meeting the minimum requirements of a regulation may not be enough to prevent a sophisticated cyber attack.

The consensus is clear: compliance alone is a poor strategy for managing risk. Simply checking the boxes doesn’t equate to being secure. Instead, a security-first approach to risk management is necessary. By prioritizing security, compliance will naturally follow.

Strategies for a Security-First Approach

Transitioning from a compliance-first to a security-first approach requires strategic thinking. The podcast highlights that many vendors leverage compliance requirements to market their solutions, using it as a sales tactic to instill fear. However, a more effective strategy involves building client trust, credibility, and likability.

Businesses can secure long-term success by focusing on genuinely helping clients enhance their security posture—beyond just meeting compliance requirements. Helping clients do more than just “check the box” fosters stronger relationships and better security outcomes.

Integrating Security into Business Culture

The discussion concludes with practical advice on embedding security into a company’s culture, rather than treating it as a separate compliance task. It’s a collective effort that involves collaboration among IT, service providers, MSPs, and all stakeholders. However, the responsibility ultimately falls on the CEO or business owner to champion a security-first mindset.

This leadership role is not just a position, but a responsibility to the entire organization. Creating a culture that prioritizes security begins at the top, with leadership demonstrating accountability and a commitment to safeguarding the business, empowering everyone in the organization to contribute to a secure environment.

This episode serves as a reminder that while compliance is necessary, it’s not sufficient. Adopting a security-first approach and cultivating a security-conscious culture is critical for truly protecting your organization from cyber threats.

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Stay ahead of the curve in the evolving world of cybersecurity compliance. Subscribe to our podcast for more insightful discussions and expert advice.

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

Deb Peterson Joins Ostra Cybersecurity Operations Team Expansion

Deb Peterson will champion the client experience and streamline operations as the company scales. 

Deb Peterson joins Ostra

Ostra Cybersecurity, a leading provider of world-class cybersecurity solutions for small and medium-sized businesses, is thrilled to welcome Deb Peterson as Senior Program Success Manager.

This latest hire confirms our commitment to operational excellence during a season of rapid growth for the company. Ostra’s Operations Team is the force behind its multi-layered, fully managed cybersecurity solutions.

With a focus on being the Trusted Cybersecurity Team for its clients and partners, Ostra’s market niche is ensuring that top-notch data security solutions are accessible for small to medium-sized businesses (SMBs) and the network of consultants, IT, and Managed Service Providers (MSPs) who serve them.

Deb’s association with Ostra is not entirely new; she previously worked with Ostra Founder Michael Kennedy in an IT role at Optum, one of the world’s leading healthcare companies.

“Having had the pleasure of working together in the past, I know firsthand the exceptional skills and dedication Deb brings to the table,” stated Kennedy. “Her wealth of experience will undoubtedly enhance our efforts and drive our mission forward; I look forward to the incredible achievements we will accomplish together.”

This hire demonstrates that in addition to being an innovator in the industry, Ostra is maturing as an organization. In this role, Deb will ensure processes are in place as we continues to scale, in order to keep client protection and satisfaction at the center of what we do. She looks forward to applying her deep cybersecurity industry experience and IT program management skills in this dynamic environment.

“I’ve always had a passion for finding ways to streamline complex initiatives and technology concepts, so Ostra’s approach to simplifying cybersecurity really resonates with me,” Deb said. “I’m honored and excited to be part of Ostra’s mission to protect SMBs.”

Deb earned her Bachelor of Science degree in Business Administration from Metropolitan State University in Minneapolis. Some of the skills she brings to this role include her ability to communicate effectively at all levels—whether translating complex technology concepts to champion the client experience or problem-solving with technology teams to optimize operations.

Before joining Ostra, Deb spent more than 20 years managing retail, healthcare, and banking programs across infrastructure and security platforms for Fortune 100 and privately owned companies.

Her experience includes an international cybersecurity AI proof of concept project, implementing various new security technologies, creating security processes, and tightening security controls following major security breaches.

Welcome to the Ostra team, Deb!

Connect with Deb on LinkedIn.

cybersecurity compliance

Sunsets & Snowdrifts Cybersecurity Podcast: Episode 3 – AI In Cybersecurity

Sunsets & Snowdrifts – AI in Cybersecurity

In the latest episode of the “Sunsets & Snowdrifts” podcast, titled “AI in Cybersecurity,” we take a deep dive into how artificial intelligence (AI) is transforming the cybersecurity landscape. Hosted by Frank Gurnee, this episode features enlightening conversations with Michael Kennedy, CEO of Ostra Security, and Evan Francen, Founder of SecurityStudio.

Rapid Adoption of AI

The discussion kicks off with Michael and Evan examining the rapid rise of AI in cybersecurity. They explore the dramatic changes AI brings to both threat detection and defense mechanisms. AI is not just a buzzword—it’s actively reshaping the cybersecurity industry.

What’s Changing the Most?

Evan and Michael elaborate on the most significant changes AI is driving:

  • Threat Perspective: AI algorithms are becoming adept at identifying sophisticated cyber threats that traditional methods might miss.
  • Defensive Perspective: AI enhances defensive strategies by automating responses and analyzing vast amounts of data in real-time to predict potential breaches.

Addressing Workforce Gaps

One of the most pressing issues in cybersecurity today is the workforce gap. The industry faces an alarming shortage of skilled professionals, with an estimated 600,000-750,000 unfilled positions in the US and approximately 3.5 million globally. This gap is expected to grow to 5 million in the coming years.

Can AI Solve This?

Michael and Evan discuss whether AI can mitigate these shortages. While AI can automate many tasks, the consensus is that it cannot entirely replace human expertise. Instead, AI serves as a valuable tool that can assist cybersecurity professionals, allowing them to focus on more complex issues while AI handles routine tasks.

Forward-Looking Perspective

The episode wraps up with a forward-looking perspective on the future of AI in cybersecurity. The panelists emphasize the importance of a balanced approach that leverages AI’s strengths while addressing its limitations. AI is a powerful ally, but human oversight and strategic thinking remain irreplaceable.

That’s a Wrap!

The “AI in Cybersecurity” podcast provides a comprehensive overview of how AI is shaping the cybersecurity industry, from filling workforce gaps to enhancing threat detection and response. The insights shared by Michael Kennedy and Evan Francen offer valuable guidance for businesses navigating this evolving landscape.

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Stay ahead of the curve in the evolving world of cybersecurity and AI. Subscribe to our podcast for more insightful discussions and expert advice.

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

 

A Pulse On Mental Health In The Cyber Industry, - Episode 2

Sunsets & Snowdrifts Cybersecurity Podcast: Episode 2 – A Pulse on Mental Health

Sunsets & Snowdrifts – A Pulse On Mental Health In The Cyber Industry

Welcome back to “Sunsets & Snowdrifts,” the new podcast venture from cybersecurity veterans Michael Kennedy, founder of Ostra Cybersecurity, and Evan Francen, CEO of SecurityStudio. Together with Frank Gurnee, Channel Director at SecurityStudio, this illustrious trio injects honesty and transparency into the cybersecurity conversation.

In this episode, titled “A Pulse On Mental Health In The Cyber Industry,” our discussion broadens to encompass not only the mental health challenges within the cybersecurity field but also practical cybersecurity best practices critical for businesses of all sizes. Evan and Kennedy stress the imperative of incorporating robust security measures like Multi-Factor Authentication (MFA) and endpoint protection.

They highlight how Managed Service Providers (MSPs) play a pivotal role in educating their Small and Medium Business (SMB) clients about cybersecurity essentials, such as conducting regular security audits, implementing secure remote access, and training employees on safe online practices. This effort takes on added significance during National Small Business Week when this episode was first broadcast live.

May, recognized as Mental Health Awareness Month, serves as a fitting backdrop for an in-depth examination of how cyber, IT, and business leaders can prioritize the mental well-being of their employees. Our hosts advocate for a leadership style rooted in empathy and authenticity, emphasizing the transformative power of understanding employees not just professionally but also on a personal level.

They promote creating a workplace culture that encourages open dialogue about mental health, suggesting that leaders should lead by example, sharing their own experiences and normalizing conversations about feelings and challenges. Francen and Kennedy also discuss how helping employees find purpose in their work can significantly bolster their motivation and overall job satisfaction, underlining the idea that discovering one’s purpose can be profoundly fulfilling.

This episode underscores the interconnectedness of cybersecurity practices and mental health advocacy, illustrating that safeguarding an organization’s digital assets and fostering a healthy work environment go hand in hand.

As the conversation comes to a close, Francen and Kennedy call for leaders in the cybersecurity industry to prioritize mental health in their organizations and lead by example, creating a positive ripple effect throughout the entire industry.  

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Don’t miss out on the invaluable insights shared in the “Sunsets & Snowdrifts” podcast series! Join Michael Kennedy, Evan Francen, and Frank Gurnee as they unfold the complexities of cybersecurity with clarity and candor. Deepen your understanding and enhance your awareness by subscribing today!

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

c

Sunsets & Snowdrifts Cybersecurity Podcast: Episode 1 – Origin Story

Sunsets & Snowdrifts – The Origin Story

Introducing “Sunsets & Snowdrifts,” the new podcast venture from cybersecurity veterans Michael Kennedy, founder of Ostra Cybersecurity, and Evan Francen, CEO of SecurityStudio.

Together with Frank Gurnee, Channel Director at SecurityStudio, this trio aims to inject honesty and transparency into the cybersecurity conversation.

In this inaugural episode, titled “The Origin Story”, Kennedy leaves the chill of Minnesota and joins Francen in his Puerto Vallarta paradise to provide a unique perspective on their personal journeys into cybersecurity.

Their discussion critically examines the industry’s tendency to oversell unnecessary security products and underscores the significance of understanding one’s cybersecurity risk tolerance.

They also emphasize the necessity of discussing the dangers of social engineering scams with friends and family, particularly the most vulnerable, such as the elderly.

So, grab a cup of coffee, sit back, and join us in this enlightening journey as we peel back the layers of the cybersecurity industry, one episode at a time, learning from two of the best in the business.

Subscribe to the “Sunsets & Snowdrifts” Podcast Series

Don’t miss out on the invaluable insights shared in the “Sunsets & Snowdrifts” podcast series! Join Michael Kennedy, Evan Francen, and Frank Gurnee as they unfold the complexities of cybersecurity with clarity and candor. Deepen your understanding and enhance your awareness by subscribing today!

SUBSCRIBE HERE: https://www.ostra.net/podcast/

View The Entire Podcast 

Click on the video link to watch the entire episode on YouTube. 

Ostra Company News

Ostra Cybersecurity Secures $4M in Series A Funding: A Game-Changer for Business and Tech Security

Amplifying Our Commitment: How Investment Translates to Enhanced Cyber Defenses

When it comes to your business’s cybersecurity, one thing is for certain—there’s no standing still. Cyber threats evolve with technology, and as a business owner or IT leader, your resourceful ally in this persistent battle is a managed cybersecurity service that’s dynamic, dependable, and ahead of the threat graph. 

Enter Ostra Cybersecurity, a trailblazer in digital protection, now backed by a significant achievement—the successful closure of our Series A funding round, securing over $4 million led by Rally Ventures.

Why This Matters

This funding milestone signifies more than just financial growth. It signals a seismic shift in our approach to managed cybersecurity. With this influx of capital, Ostra is doubling down on its mission to fortify your business defenses proactively, preempting risks before they breach your systems. 

Enhancing Our Team

As part of our expansion efforts, Ostra is bolstering our customer-facing teams. From customer success to support and account management, every interaction with our clients is strategically aimed at not just resolving issues but anticipating and preventing them altogether. Readiness, agility, and coordinated responses are all benefits you can expect from our Cybersecurity-as-a-Service (CSaaS) offerings. 

Expanding Our Network

Simultaneously, Ostra is ramping up efforts in channel partner development, rallying like-minded organizations to join forces with us. Our expanding channel ecosystem ensures comprehensive coverage across the business landscape, amplifying your defense capabilities at every turn. 

Leadership That Listens

Under the guidance of Andrew Tewksbury, Ostra’s new CEO, we are focused not just on technological tools but also on human-centric approaches to security. Andrew’s vision aligns technology with human foresight, ensuring our solutions remain agile, intelligent, and oriented towards the long-term success of your enterprise. 

Commitment to Excellence

This investment underscores our unwavering commitment to customer excellence. Funds are being allocated to elevate our customer-facing teams to unprecedented levels, ensuring seamless integration of our solutions and round-the-clock support. 

Cultivating Partnerships

Ostra’s spirit is one of collaboration and success, driven not just by funding but by a shared purpose with our clients. This investment allows us to deepen partnerships, tailor solutions, and inject resilience and intelligence into the core of your enterprise architecture. 

Beyond Numbers

Our Series A funding is more than just a statistic; it’s an endorsement from industry leaders and investors who recognize Ostra’s pivotal role in cybersecurity. It empowers us to innovate and deliver on promises backed by collective intelligence and tenacity. 

Building Trust

Trust is the cornerstone of cybersecurity, and Ostra is committed to fostering transparency and integrity in all our partnerships. Our expanding teams and unwavering dedication testify to this commitment. 

The Road Ahead

Looking forward, Ostra is focused on integrating emerging technologies, expanding its industry footprint, and deepening client resilience. Partnering with Ostra isn’t just availing a service; it’s embarking on a journey of continuous evolution and security enhancement. To learn more about how to lean on Ostra as Your Trusted Managed Cybersecurity Team, Contact Us

Full Press Release:

 

CYBERSECURITY POWERHOUSE OSTRA ANNOUNCES LARGEST ROUND OF FUNDING TO DATE BRINGING AN ADAPTIVE SOLUTION TO SMBs

Funding led by Rally Ventures will further accelerate Ostra’s rapid growth with investments in numerous customer-facing areas of the business.

MINNEAPOLIS, MINN. / April 09, 2024 / — Ostra Cybersecurity, a company whose holistic and fully managed Security as a Service is revolutionizing how cybersecurity is delivered to small and mid-sized businesses, announced the completion of its Series A funding.

The Series A funding, of more than $4 million in total, was led by Rally Ventures, with participation from founding investor Jeff Cowan. To date, Ostra has raised $10 million from investors, with most funds coming in the past 18 months based on the rapid rise in demand for a complete managed offering tailored to small and mid-sized businesses (SMBs).

This latest funding news follows on the heels of Ostra’s recent announcement that Andrew Tewksbury is the company’s new CEO. Together, these developments will enable Ostra to accelerate its growth while leveraging a channel first model to fulfill its mission of protecting SMBs.

“Today, it’s no longer optional for businesses of all sizes to secure their systems and data,” Tewksbury said. “This latest funding will help us fast-track some key business development and operational initiatives to expand our quickly growing channel partner program and protect a gaping hole in cybersecurity for all SMB clients.”

The most recent round of funding will help fuel Ostra’s go-to-market engine. The company plans to nearly double its customer-facing teams in areas such as account management, channel marketing, customer success, and support. Ostra will also continue to build its US based team in channel partner recruitment and support, based on the momentum generated by ongoing initiatives to attract MSPs and others within the partner community.

“The addition of Andrew Tewksbury strengthens an already exceptional executive team with decades of experience in cybersecurity and strategic operations,” said Michael Jennings, Venture Partner at Rally Ventures. “Ostra fills a crucial gap in the industry for SMBs at a time when change is not just necessary, but inevitable. We’re excited to continue supporting Ostra’s journey and confident their platform will be the go-to solution for SMBs seeking to keep their systems and data secure from cybercriminals.”

About Ostra Cybersecurity

As Your Trusted Cybersecurity TeamTM, Ostra makes cybersecurity simple and accessible to businesses of all sizes. Ostra provides its partners and their clients with multi-layered, comprehensive, and fully managed Security as a Service. Ostra’s proprietary solutions combine Fortune 100-caliber tools, tech, and talent to ensure threats are not only detected and hunted, but also fully remediated.

With a mission to simplify cybersecurity for small to mid-sized businesses, Ostra believes everyone deserves best-in-class data protection—not just big business. For more information, visit www.ostra.net.

About Rally Ventures

Rally Ventures invests exclusively in early-stage business technology companies, focusing on entrepreneurs creating major new markets or bringing transformative approaches to existing ones. Since 1997, Rally Ventures’ partners and venture capital industry veterans have invested in or run early-stage enterprise business-to-business technology companies with a proven ability to deliver superior returns regardless of the overall market environment. For more information visit rallyventures.com.

Read the full Press Release

Andrew Tewksbury, CEO, Ostra Cybersecurity

Embracing New Leadership with Andrew Tewksbury

A Message from Our Founder

Introducing Andrew Tewksbury, CEO, Ostra CybersecurityI am thrilled to share some exciting news with our partners, clients and supporters. Today marks a significant milestone in our journey as we welcome Andrew Tewksbury as our new Chief Executive Officer—leading us into a new era of success.

Andrew’s arrival represents more than just a change in leadership; it symbolizes our commitment to continuous growth and innovation in the cybersecurity landscape.

With his wealth of experience and strategic vision, Andrew is poised to propel Ostra to new heights, solidifying our position as a trailblazer in safeguarding small and mid-sized businesses (SMBs).

Our decision to embrace a collaborative leadership model underscores our dedication to remaining a mission-driven company while driving sustainable growth. Together with Andrew and our seasoned executive team, including myself, we are poised to accelerate our growth strategy and advance our mission of protecting SMBs.

Andrew brings a wealth of experience and expertise in the cybersecurity industry, along with a proven track record of Go-To-Market leadership and strategic vision. His passion for technology, commitment to excellence, and mission-based values resonated deeply with me and the entire Ostra team, making him the perfect fit to guide us through our next phase of continued growth. I am eager to partner with him in strengthening our market position and delivering exceptional protection to our partners and clients.

As I take a moment to look back on the remarkable journey Ostra has embarked on since we started in 2018, I am filled with anticipation for the future under Andrew’s leadership. With him at the helm as CEO, I am genuinely excited about the prospect of dedicating more time to what I am most passionate about – educating others via speaking engagements, forging strategic partnerships, and finding innovative solutions to cybersecurity challenges. These are the things that fuel my spirit, and, most importantly, hold the potential to yield the greatest impact for our company and the communities we serve.

As we write the next chapter of Ostra’s success story, I am confident that with Andrew’s leadership, combined with the dedication of our amazingly talented team, we will continue to revolutionize cybersecurity for SMBs and the partners who serve them.

Thank you to our entire community of clients, partners and supporters for your belief in our mission, with special appreciation for the Ostra team. Your commitment to protecting our clients fuels our journey, and I’m endlessly grateful for each of you as we embark on this exciting chapter together.

-Michael

Read the official press release. 

Ostra Cybersecurity Earns Finalist Spot for 2024 ACG BOLD Awards

We’re honored to announce that Ostra Cybersecurity has been named a finalist for the prestigious ACG (Association for Corporate Growth) BOLD Awards in the category “Small & Growing.”

These awards celebrate ambitious goals, game-changing innovations, and visionary leaders who make significant strides for their companies and stakeholders. They recognize exceptional corporate leadership and strategic success that leads to impressive growth and sustainability.

Finalists were placed into six categories: Small & Growing, Middle Market, Large & Established, BOLDest Transaction of the Year, BOLDest Leader of the Year, and BOLD Inspiration Community Partnership.

The BOLD Awards Gala will be held on February 27, 2024, at the Metropolitan Club in Minneapolis. During this event, each of the individual category winners will be acknowledged. A live, real-time vote will determine the ultimate victor—the Boldest of the BOLD.

What Sets Ostra Cybersecurity Apart?

Ostra’s path to becoming a BOLD Award finalist is marked by dedication and an unwavering commitment to serving small and medium-sized businesses in the cybersecurity landscape.

Before founding Ostra, Michael Kennedy spent over twenty years developing advanced cyber defense mechanisms for one of the world’s leading healthcare providers. Recognizing that smaller enterprises lacked similar protection measures and witnessing firsthand the devastating effects of a ransomware attack on a friend’s Minnesota-based company spurred Kennedy to take action. Inspired by his industry expertise and passion to make a difference, Ostra was born.

Our mission addresses an alarming observation: although nearly half of all cyberattacks target small businesses, only 14% have adequate defenses. Ostra aims to rectify this imbalance. Through partnerships with Managed Service Providers (MSPs), consultants, and IT specialists, we provide unparalleled security tailored to meet the unique needs of SMBs. We offer genuine enterprise-grade cybersecurity support at an affordable price.

Ostra’s Impactful Year of Protection in 2023

This past year has been remarkable for Ostra, as we achieved significant milestones that underscore our unwavering commitment to safeguarding our customers’ digital assets:

  • Processing over 30 billion events, analyzing 1.3 million alerts, and effectively mitigating 20,000 security incidents.
  • Providing around-the-clock vigilance against cyber threats through our dedicated team.
  • Experiencing a threefold growth in protecting SMB clients, with approximately half being based in Minnesota.
  • Innovating our portfolio by introducing Ostra Encompass (TM) and Ostra Extend (TM), expanding our managed cybersecurity solutions to meet evolving needs.

Kennedy’s words best capture Ostra’s progress and ethos: “I am so grateful for our people—Ostra’s talented employees have a reputation for going ‘all-in’ to make enterprise-level cybersecurity accessible and affordable for small and medium-sized businesses. We all believe that regardless of size, all businesses deserve the same level of protection that the world’s largest companies invest millions of dollars in each year.”

Standing Strong Together in Cybersecurity

As Your Trusted Cybersecurity Team, we at Ostra strive to make best-in-class cybersecurity accessible to businesses of all sizes. Our Security-as-a-Service combines top-tier tools, technology, and talent to ensure that detection, hunting and complete remediation of cyber threats are part of our core offering.

Rooted in the belief that every business deserves elite data protection, Ostra is here to bring Fortune 100-level security to everyone. Learn more about our mission and offerings by visiting ostra.net.

Celebrating ACG’s Legacy of Fostering Growth

In acknowledging our professional colleagues, we would also like to commend ACG (Association for Corporate Growth). ACG is a global professional association focused on driving middle-market growth. With over 14,000 members worldwide, it is the leading organization for professionals involved in corporate growth, development, mergers and acquisitions.

Since 1954, ACG has played a vital role in fostering a global professional community. The Minnesota chapter has served as a beacon for local business vitality since 1966. With nearly 300 members contributing to Minnesota’s dynamic economy, ACG continues to advocate for middle-market success.

Read Ostra’s full press release announcement.

 

Laura Hayes

Ostra Cybersecurity Grows Its Partner Success Team

Laura Hayes Hired to Expand the Impact and Reach of Ostra Channel Partner Program.

Laura Hayes

Ostra Cybersecurity, a leading provider of world-class cybersecurity solutions for small and medium-sized businesses, recently welcomed Laura Hayes as Senior Partner Success Manager.

With this latest Channel Team hire, Ostra continues to strengthen its Channel Partner Network during a season of exponential growth.

Ostra’s Channel Partner program is designed to help its network of consultants, IT and Managed Service Providers (MSPs) enhance value for small to medium-sized business clients through a multi-layered, fully managed cybersecurity solution.

With a focus on being the Trusted Cybersecurity Team for its clients and partners, Ostra’s market niche is ensuring that top-notch data security solutions are accessible for small and medium-sized businesses.

In this role, Laura is collaborating with Channel Partners on security awareness, lead generation, and co-branding initiatives to help them protect more clients and grow services revenue. She is focused on helping partners build their cybersecurity practices using Ostra’s proprietary, fully managed solutions.

Specifically, she educates partners and clients about the benefits of taking a holistic approach to cybersecurity and coaches them on how to achieve a more consistent revenue stream while managing risk and providing protection for their clients’ valuable information assets.

Many organizations today are navigating massive changes in their virtual workforces, IT infrastructure and data security regulations. Ostra’s managed cybersecurity—combined with the service expertise of its channel partners—delivers a comprehensive solution that addresses a unique set of specialized IT challenges facing business owners.

Before joining Ostra, Laura spent over eight years in channel management, most recently as a Strategic Partnerships Development Manager at Alert Logic, a Fortra security operations subsidiary. Laura also spent three years as a Global Accounts Manager for a global IT consulting firm and five years as a Senior Sales Executive at a software company offering middleware enhancement systems. Her earlier experience also includes sales and sales management roles in the pharmaceutical and corporate travel industries.

“Laura has built a highly successful channel sales career in technology and SaaS for global leaders,” said Wade Hoffman, EVP of Channel & Strategy at Ostra. “Her expertise made her the perfect candidate to educate and motivate Ostra Channel Partners to solve cybersecurity gaps for their clients.”

Laura earned a bachelor’s degree in psychology from the University of Phoenix in Arizona. This background has served her well in understanding what motivates others and how to approach different personality types positively. She enjoys listening to partners, identifying their strengths and challenges, and helping them explore how Ostra could be an asset to their overall business strategy.

“My goal is to help build Ostra’s reputation for having the best partner program in the industry,” Laura said. “I want to enable our partners to experience higher client retention as well as increased trust factor and overall client satisfaction by accessing best-in-class cybersecurity.”

Connect with Laura on LinkedIn.

Let’s Talk Cybersecurity: Hacks & Hops Recap with Ostra

Did you miss the Hacks & Hops Virtual Security Conference on October 14? We weren’t able to connect in person this year, but this year’s event did not disappoint even though we got together virtually.

Hosted by FRSecure, one of Ostra’s Channel Partners, Hacks and Hops is a free, full-day virtual conference that brings information security professionals together to learn, network and enjoy beer (over Zoom, anyway!) Ostra was a proud sponsor of this year’s event.

Getting Real: The Problem with Technology Providers and MSSPs

It was a jam-packed day of best practice sharing from experts across the industry. Several speakers presented on topics ranging from mental health, cyber insurance, MSSPs, and more. We hosted a thought-provoking conversation with Ostra’s Founder, Michael Kennedy.

In his engaging and authentic style, Michael shared a 40-minute presentation entitled The Problem with Technology Providers and MSSPs. It explored cybersecurity best practices, challenges being ignored (by clients and providers), and opportunities for all to keep learning and do better.

Watch a free, on-demand replay of Mike’s full session here.

In the first portion of his presentation, Michael shared how an MSSP/Tech Provider’s best practices of honesty, advocacy and transparency are key to recognizing and rewarding clients’ current cybersecurity efforts.

In the cybersecurity world, there’s a lot of good being done, but we still have more to do. In his session, Michael shared his top three best practices that are key for any MSSP or tech provider to recognize and reward clients’ on cybersecurity efforts.

1. Best Practice #1: Honesty

It’s important to recognize what clients are doing right. Michael reminded participants, “If it’s a competitor tool and it’s a pretty good one, give them credit for getting something implemented—we all know it’s difficult to buy, implement, and manage tools.”

Another way service providers can be honest is to build trust—not fear. This can be hard, especially if you find out a customer is doing something that is really putting their organization at immediate risk. But Michael encouraged tech providers to first care about their customer’s business, what they do, and why they are successful before starting to critique their attack surface.

 

“A foundation of trust helps clients honestly share their concerns and fears. This lets us, as their partners, truly help them detect, prevent and remediate threats.”

2. Best Practice #2: Advocacy

When clients get a list of things to do that they don’t know how to execute, a good technology partner will be their advocate and help relieve the burden.

According to Michael, “Reports mean nothing if we are not there to walk customers through it or help them.” He emphasized the need to educate customers so they understand the tools and resources they are using, and how they work—versus just selling them a product or a blinking light.

In his experience, it’s about being the trusted partner who can detect, prevent and remediate. “We see quite a few businesses who are tired of not knowing how to manage the tools that were sold to them.”

3. Best Practice #3: Transparency

Michael believes in sharing the pros and cons of competitors, and said MSSPs should not be afraid to work with multiple channel partners or give outside referrals if that’s the best solution for customers.

He challenged the audience, “What is our core purpose? To [help businesses] prevent or recover quickly from cyberattacks, we might not be the right solution—and that’s ok.” This philosophy is in keeping with Ostra’s commitment to making cybersecurity more cost-effective for small and medium-sized businesses.

Being open and transparent with so-called competitors can also bring surprising results. Michael shared some of Ostra’s learning experiences in this area.

“A perfect example of this is, we were being constantly compared to a couple of other companies in town.” But rather than building marketing to compete with them, Ostra took another approach. “We called them up, sat down with the leadership and technical teams, and discovered we are not even close to being competitors—and now we have strategic partnerships and can help each other out.”

Free, On-Demand Replays Available

To access a free replay of Michel Kennedy’s presentation, click here. Or see any of the other informative sessions at the 2021 Hacks & Hops Conference here.

Contact Ostra today for a free cybersecurity assessment for your business or your clients.

About Ostra Cybersecurity

As a next-generation managed security service provider (MSSP), Ostra Cybersecurity combines best-in-class tools, proprietary technology and exceptional talent to deliver Fortune 100-caliber protection for businesses of all sizes. The result is a multi-layered, 360-degree solution that allows you to set it and forget it. By making cybersecurity technology simple and accessible to business of all sizes, Ostra is helping create a world with greater data privacy and protection for all of us. For more information, visit www.ostra.net.

Ostra is a proud Cybersecurity Awareness Month Champion

Ostra announces commitment to safeguarding business data during Cybersecurity Awareness Month

As a 2021 Cybersecurity Awareness Month Champion, Ostra is proud to help shed more light on security vulnerabilities and do its part to secure our interconnected world.

Throughout the month of October, Ostra Cybersecurity is joining a growing global effort to promote the awareness of online safety and privacy during Cybersecurity Awareness Month. This year’s initiative highlights the growing importance of cybersecurity and encouraging individuals and organizations to take necessary measures to stay safe and secure in an increasingly connected world.

Ostra Cybersecurity has focused on proactively protecting businesses from data breaches ever since the ransomware attack that sparked its formation. Named after the Spanish word for oyster—whose shell protects the pearl inside—Ostra delivers a comprehensive, managed cybersecurity solution that protects a business’ most valuable asset: their data. Ostra is dedicated to improving information security practices across the industry and making Fortune 100-caliber cybersecurity accessible to businesses of ALL sizes.

With a passion for educating others about cyber threats, Ostra considers it a high priority to help spread the word as a 2021 Cybersecurity Awareness Month Champion.

“Too many times, we see the devastating impact of data breaches on real people—employees, business owners, customers, donors and more,” explains Michael Kennedy, Founder of Ostra Cybersecurity. “So that’s why Ostra is ‘all in’ when it comes to highlighting the importance of data security during Cybersecurity Awareness Month.”

What is Cybersecurity Awareness Month?

Cybersecurity Awareness Month 2021Now in its 18th year, Cybersecurity Awareness Month continues to build momentum and impact with the ultimate goal of providing everyone with the information they need to stay safer and more secure online.

The Cybersecurity Awareness Month Champions Program is a collaborative effort among businesses, government agencies, colleges and universities, associations, nonprofit organizations and individuals committed to the Cybersecurity Awareness Month theme of ‘Do Your Part. #BeCyberSmart.’

As a 2021 Champion, Ostra supports this far-reaching online safety awareness and education initiative which is co-led by the National Cyber Security Alliance and the Cybersecurity and Infrastructure Agency (CISA) of the U.S. Department of Homeland Security.

Spreading Awareness

All month long, Ostra will be sharing educational content and cybersecurity tips on our blog and social media channels. Follow Ostra on LinkedIn to stay up-to-date on Cybersecurity Awareness Month initiatives, as well as everyday data security topics that impact businesses of all sizes.

Ostra will also be promoting cybersecurity awareness this October by participating in Hacks & Hops—a FREE virtual security conference hosted by FRSecure on October 14, 2021. Ostra is proud to be a sponsor and presenter for this year’s event.

Hacks & Hops brings information security professionals together to learn, network and enjoy beer. This year’s full-day, virtual conference will include 12 speakers and 8 topics—ranging from mental health, cyber insurance, MSSPs, and more. Attendees can also earn up to 5 hours of self-study CPE credits by participating.

Michael Kennedy, Founder of Ostra Cybersecurity will share “The Problem With Tech Providers and MSSPs” as the final presentation of the Hacks & Hops event. This educational session will cover:

  • Best practices to recognize and reward clients’ current cybersecurity efforts
  • Obvious challenges being ignored (by clients and providers), and what to do about it
  • Opportunities for ALL to step up, keep learning and doing better, plus some words of advice to the cybersecurity industry

Learn more and register for this free cybersecurity event at hacksandhops.com

For more information about Cybersecurity Awareness Month 2021 and how to participate in a wide variety of activities, visit staysafeonline.org/cybersecurity-awareness-month. You can also follow and use the official hashtag #BeCyberSmart on social media throughout the month.

2021: Do Your Part. #BeCyberSmart

More than ever before, technology plays a part in almost everything we do. Connected devices have been woven into society as an integral part of how people communicate and access services essential to their well-being.

Despite these great advances in technology and the conveniences this provides, our lives and businesses can quickly be disrupted by cyber criminals and adversaries who use technology to do harm. Cybersecurity Awareness Month aims to shed light on these security vulnerabilities, while offering actionable guidance surrounding behaviors anyone can take to protect themselves and their organizations.

This year, the Cybersecurity Awareness Month’s main weekly focus areas will revolve around:

  • Understanding and implementing basic cyber hygiene, including the importance of strong passphrases, using multi-factor authentication, performing software updates and backing up data.
  • Recognizing and reporting phishing attempts whether it’s through email, text messages, or chat boxes.
  • Empowering individuals to not only practice safe online behavior, but consider joining the mission of securing our online world by considering a career in cybersecurity.
  • Making cybersecurity a priority in business by making products and processes “secure by design” and considering cybersecurity when purchasing new internet-connected devices.

Simplifying Cybersecurity for Diverse Clients

Ostra’s mission is to simplify cybersecurity for small and medium-sized businesses. This is accomplished by tailoring multi-layered cybersecurity—powered by technology that the world’s largest companies rely on—to fit smaller businesses.

In addition to working directly with clients, Ostra fulfills its mission by partnering with trusted advisors who serve businesses across diverse industries. Through its Channel Partner Program, Ostra empowers Managed Service Providers (MSPs), consultants, incident response firms, assessment firms and others who need to deliver best-in-class security solutions for their small- and medium-sized business clients as part of a broader IT services strategy.

Check out Ostra’s blog to learn more about their relationship with Channel Partners such as CyberFin and FRSecure.

About Ostra

As a next-generation MSSP, Ostra Cybersecurity combines best-in-class tools, proprietary technology and exceptional talent to deliver Fortune 100-level protection for businesses of all sizes. The result is a multi-layered, 360° solution that allows you to set it and forget it. For more information, visit www.ostra.net.

About Cybersecurity Awareness Month

Cybersecurity Awareness Month is designed to engage and educate public- and private-sector partners through events and initiatives with the goal of raising awareness about cybersecurity to increase the resiliency of the nation in the event of a cyber incident. Since the Presidential proclamation establishing Cybersecurity Awareness Month in 2004, the initiative has been formally recognized by Congress, federal, state and local governments and leaders from industry and academia. This united effort is necessary to maintain a cyberspace that is safer and more resilient and remains a source of tremendous opportunity and growth for years to come. For more information, visit the National Cyber Security Alliance website.

About National Cyber Security Alliance

NCSA is a nonprofit alliance on a mission to create a more secure connected world. We enable powerful, public-private partnerships in our mission to educate and inspire individuals to protect themselves, their families and their organizations for the collective good. Click here for more information on the National Cyber Security Alliance.

Ostra-Data-Privacy-Day-January-28-2021

Ostra’s Data Protection Commitment as a 2021 Data Privacy Day Champion

January 28, 2021 is Data Privacy Day—an annual initiative to generate awareness about the importance of privacy. Ostra is proud to join this global effort as a 2021 Data Privacy Champion.

As our personal and business lives become more interconnected throughout our online communities, it’s crucial to understand the impact of our decisions and actions online. Ostra is a Data Privacy Day Champion because we were founded on the belief that all businesses and individuals have a fundamental right to data privacy and security.

Ostra-Data-Privacy-Day-Champion-2021“Our company was founded with the goal of protecting business data. How you handle sensitive data is critical to how you care for clients,” said Ostra Founder Michael Kennedy. “Knowledge is power, especially when it comes to data privacy. We’re grateful for the opportunity to be a Data Privacy Champion because it allows us to help spread that awareness even further.”

This year’s initiative emphasizes cultivating trust among consumers by adopting data privacy frameworks and promoting transparency around data collection practices. In 2021, the National Cyber Security Alliance (NCSA) is encouraging individuals to “Own Your Privacy” by learning more about how to protect the valuable data that is online, and encouraging businesses to “Respect Privacy,” which advocates for holding organizations responsible for keeping individuals’ personal information safe from unauthorized access and ensuring fair, relevant and legitimate data collection and processing.

According to a Pew Research Center study, 79% of U.S. adults report being concerned about the way their data is being used by companies. As technology evolves and the pandemic continues to influence how consumers interact with businesses online, data collection practices are becoming increasingly unavoidable, making it imperative that companies act responsibly.

As an industry leader in cybersecurity solutions, Ostra’s proprietary technology was built around protecting data. Keeping data private is not just a cornerstone to Ostra’s business, but a fundamental promise to the clients we serve. We do not store or collect any client data, and we leverage our best-in-class security technology to enable our clients to follow the same best practice.

Taking Action to Protect Data

In cooperation with the National Cyber Security Alliance, we invite our clients and partners to join us in Data Privacy Day by helping us spread awareness about how to protect the valuable data that is online. Here are tips to help guide our community to better data privacy practices.

For Businesses:

  • If you collect it, protect it. Data breaches can not only lead to great financial loss, but a loss in reputation and customer trust. Follow reasonable security measures to keep individuals’ personal information safe from inappropriate and unauthorized access. Make sure the personal data you collect is processed in a fair manner and only collected for relevant and legitimate purposes.
  • Consider adopting a privacy framework. Build privacy into your business by researching and adopting a privacy framework to help you manage risk and create a culture of privacy in your organization.
  • Conduct an assessment of your data collection practices. Understand which privacy laws and regulations apply to your business. Educate your employees of their and your organization’s obligations to protecting personal information.
  • Transparency builds trust. Be open and honest about how you collect, use and share consumers’ personal information. Think about how the consumer may expect their data to be used and design settings to protect their information by default. Communicate clearly and concisely to the public what privacy means to your organization and the steps you take to achieve and maintain privacy.
  • Maintain oversight of partners and vendors. If someone provides services on your behalf, you are also responsible for how they collect and use your consumers’ personal information.

For Individuals:

  • Personal info is like money: Value it. Protect it. Personal information, such as your purchase history, IP address, or location, has tremendous value to businesses – just like money. Make informed decisions about whether or not to share your data with certain businesses by considering the amount of personal information they are asking for, and weighing it against the benefits you may receive in return.
  • Keep tabs on your apps. Many apps ask for access to personal information, such as your geographic location, contacts list and photo album, before you can use their services. Be thoughtful about who gets that information, and wary of apps that require access to information that is not required or relevant for the services they are offering. Delete unused apps on your internet-connect devices and keep others secure by performing updates.
  • Manage your privacy settings. Check the privacy and security settings on web services and apps and set them to your comfort level for information sharing. Each device, application or browser you use will have different features to limit how and with whom you share information. Get started with NCSA’s Manage Your Privacy Settings page.

About Data Privacy Day

Data Privacy Day began in the United States and Canada in January 2008 as an extension of the Data Protection Day celebration in Europe. Data Protection Day commemorates the Jan. 28, 1981, signing of Convention 108, the first legally binding international treaty dealing with privacy and data protection. NCSA, the nation’s leading nonprofit, public-private partnership promoting cybersecurity and privacy education and awareness, leads the effort in North America each year. For more information about Data Privacy Day 2021 and how to get involved, visit https://staysafeonline.org/data-privacy-day/.

About the National Cyber Security Alliance

NCSA is the Nation’s leading nonprofit, public-private partnership promoting cybersecurity and privacy education and awareness. NCSA works with a broad array of stakeholders in government, industry and civil society. NCSA’s primary partners are the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) and NCSA’s Board of Directors, which includes representatives from ADP; AIG; American Express; Bank of America; Cofense; Comcast Corporation; Eli Lilly and Company; ESET North America; Facebook; Intel Corporation; Lenovo; LogMeIn; Marriott International; Mastercard; MediaPro; Microsoft Corporation; Mimecast; KnowBe4; NortonLifeLock; Proofpoint; Raytheon; Trend Micro, Inc.; Uber: U.S. Bank; Visa and Wells Fargo. NCSA’s core efforts include Cybersecurity Awareness Month (October); Data Privacy Day (Jan. 28); STOP. THINK. CONNECT.™, the global online safety awareness and education campaign co-founded by NCSA and the Anti-Phishing Working Group with federal government leadership from the Department of Homeland Security; and CyberSecure My Business™, which offers webinars, web resources and workshops to help businesses be resistant to and resilient from cyberattacks. For more information on NCSA, please visit https://staysafeonline.org.

Have questions about protecting your clients and data privacy? Connect with our team, or request a free security risk assessment to identify both known and unknown threats to your data.