It’s all too easy to forget how integral and pervasive software-as-a-service (SaaS) has become to modern business operations, given the efficiencies and flexibility benefits it provides users.

But like any sector, SaaS is constantly evolving as it incorporates new technologies and adapts to market forces. Some have even questioned if the entire SaaS concept is under threat as software becomes easier for businesses to build and run themselves.

Before we look at the current state of play, and whether SaaS really is ripe for disruption, let’s recap how SaaS operates, and what it looks like in its current form.

 

 

What is SaaS and how does it work?

SaaS is on-demand software hosted in the cloud and accessed free or via a subscription. It has become synonymous with cloud computing given that the software resides on remote computers, not on-premises. The term has also come to be used interchangeably with other remote-based services such as infrastructure as a service (IaaS), platform as a service (PaaS) and managed software as a service (MSaaS). Notable SaaS providers include household names such as Amazon, Google and Microsoft, as well as specialized providers like Salesforce (CRM), Box (storage) and Twilio (web comms).

 

The benefits of SaaS for SMBs

Why did SaaS become so popular? Simple – out-of-the-box software solutions and ready-made tools are invaluable to businesses of all sizes, but are especially beneficial for smaller ventures and SMBs with limited resources. SaaS enables these operators to access powerful, enterprise-grade software without having to invest significant capital upfront or for them to purchase costly infrastructure or software licenses. Convenient and popular SaaS solutions for SMB’s include:

• Cashless payment software
• Digital accounting packages
• Customer relationship management (CRM)
• Supply chain management systems
• Cloud-based data storage

So where is the sector going, and what will SaaS look like in the years ahead, particularly in the context of an SMB?

There is no doubt that SaaS – and cloud-based computing – will remain integral to enterprise of the future and will continue to play a dominant role in the market of the future.

 

Niches, mobility and big data

Providers of niche SaaS services – including for sectors such as health care, education and real estate – are likely to reap the benefits of widespread adoption as they design solutions for specific industries. This contrasts with more established, full-service SaaS providers who now face more market competition, and where growth is expected to be more modest.

The other growth area will be for SaaS solutions with a strong mobility presence, particularly via apps that allow SMB owners to conduct their operations remotely from their mobile devices. Here businesses are looking for streamlined mobile dashboards that can help them automate their mobile marketing, manage sales, and help them seamlessly enable social media integration, to name just a few. The rise of big data and analytics will also see players in this space become more prominent as SMBs look to leverage cloud computing to help them collect and analyze granular information on their users and competitors.

While it’s not easy to predict what’s likely to happen in such a dynamic market, all signs point to the SaaS cloud service delivery model evolving and growing as more businesses transition from on-premises private clouds to externally managed public clouds.

 

Have questions on how this affects your business? 

Five Nines Ranked Among World’s Most Elite 501

Managed Service Providers

12^th Annual MSP 501 Identifies Top Forward-Thinking Global MSPs & Leading Trends in Managed Services

June 20, 2019: Five Nines has been named as one of the world’s premier managed service providers on the prestigious 12^th-annual Channel Futures MSP 501 rankings.

Every year, MSPs worldwide complete an extensive survey and application to report their product offerings, growth rates, annual total and recurring revenues, pricing structures, revenue mix and more. MSPs were ranked according to a unique methodology that weights revenue figures according to how well the applicant's business strategy anticipates trends in the fast-evolving channel ecosystem.

Channel Futures is pleased to name Five Nines to the 2019 MSP 501.

"It’s a great honor and validation of our team’s efforts to provide the highest level of service in Nebraska,” said Joel Friesen, President of Five Nines. "We will continue to work toward being a leader in the Managed Services space, and help our partners succeed knowing that their technology is taken care of.”

In the 12 years since its inception, the MSP 501 has evolved from a competitive ranking list into a vibrant group of service providers, vendors, distributors, consultants and industry analysts working together to define the growing managed service opportunity.

“The 2019 MSP 501 winners are the most elite, innovative and strategic IT service providers on the planet, and they stand as a model of excellence in the industry,” says Kris Blackmon, Content Director of Channel Partners and Channel Futures and lead of the MSP 501 program. “As the MSP 501 Community grows, leagues of managed service providers learn from the successes of these winning companies, gaining insight into the best practices, strategies and technologies that elevate an MSP to the level of the 501 winners. Our heartfelt congratulations to the 2019 winners and gratitude to the thousands of MSPs that have contributed to the continuing growth and success of both the 501 and the thriving managed services sector.”

In addition to deciding the rankings, the survey drives the creation of an annual in-depth study of business and technology trends in the IT channel, released each year at the Channel Partners Evolution conference. The full MSP 501 Report leverages applicant responses, interviews with industry experts and historical data to give a well-rounded picture of the managed services opportunity.

The complete 2019 MSP 501 list is available at Channel Futures.

 

About Five Nines

Founded on an intense desire to solve problems and build long-term relationships with clients, Five Nines leverages technology to drive business success. With offices in Lincoln, Omaha, Kearney & Central City Five Nines advises the best IT solutions for Nebraska based businesses, offering Managed IT Services. Through its unique service model, Five Nines’ clients experience reduced costs, accelerated growth, and increased productivity. Learn more at: www.gonines.com

---

 

While you hear about the occasional breach of Protected Health Information (PHI) from large organizations, smaller medical offices often believe they are safe from a breach due to their size. When it comes to cybercrime, that is no longer the case. In fact, over three million patient records were compromised in 2017 across the medical industry, and small practices were breached, hacked, and ransomed just like the larger healthcare organizations. 

 

A GROWING TREND

The Office of Civil Rights (OCR) shows there is an upward trend in data breaches since they first published summaries of healthcare data breaches in 2009. Between 2009 and 2018, there have been 2,546 data breaches that involve more than 500 patient records. These breaches have resulted in the exposure of 189,945,874 patient records, which is more than 59% of the population of the United States.

The loss or theft of PHI were the top causes of data breaches from 2009 and 2015. These breaches could easily be prevented with device encryption, strong physical safeguard policies, along with annual staff training. The current statistics show that hacking/IT incidents have been the top causes of data breaches, which is why it’s important to discuss conducting a risk analysis with your IT team.

 

WHAT IS A RISK ANALYSIS?

In an effort to prevent these breaches of PHI, the HIPAA Security Rule requires that all covered entities must perform a risk analysis and implement a risk management plan.  This regulation is outlined in 164.308(a)(1)(ii)(A) “Conduct an accurate and thorough assessment of the potential risks and vulnerabilities to the confidentiality, integrity, and availability of electronic protected health information held by the [organization]”.

A completed risk analysis will provide your practice with a detailed understanding of the risks to the confidentiality, integrity, and availability of ePHI within your organization. A risk analysis also helps practices assess and mitigate risks to the security of PHI.

 

COMPONENTS OF A RISK ANALYSIS 

A risk analysis contains a detailed look at an organizations administrative, physical, and technical security measures utilized to protect PHI.

• Administrative Safeguards: includes an organizations' current policies and procedures used to protect PHI. This includes current security-related policies and procedures, a contingency plan, staff training policies and procedures, Business Associate Agreements, and user access to ePHI.
• Physical Safeguards: are current controls that limit access to PHI such as the facility security plan, visitor controls, media disposal, and remote access procedures.
• Technical Safeguards: includes password and inactivity timeout settings, data storage, backup plans, and disaster recovery procedures along with encryption for PHI when necessary.

 

GOALS OF A RISK ANALYSIS

• Identify how and where PHI is stored or sent: During a risk analysis, practices must determine where ePHI is stored, received, maintained or transmitted, and should also maintain documentation of this inventory.

• Identify threats and vulnerabilities: Practices also must identify potential threats and vulnerabilities within their organization whether those threats are from internal sources such as untrained employees, environmental such as a flood or fires, or an adversarial threat such as a hacker trying to access PHI.
• Determine likelihood, impact, and risk level: Once vulnerabilities are identified, practices must determine the likelihood and level of impact from each identified threat by considering how many people may be affected as well as what data will be affected. The risk level is determined by taking into account the likelihood and impact levels of each vulnerability.
• Implement security measures: Practices will then need to implement reasonable security measures to protect PHI from those identified threats. The HIPAA Security Rule allows practices to tailor security polices, procedures, and technologies for safeguarding PHI based on the size, complexity, and capabilities of the practice, as well as technical, hardware, and software infrastructure.

 

WHY COMPLETE A RISK ANALYSIS?

A completed Risk Analysis will help your practice identify vulnerabilities within your organization that could lead to a data breach or loss of PHI at some level. This assessment is the first step to ensuring compliance with the HIPAA Security Rule, attesting to government incentive programs, and ensuring security of PHI within your organization.

Don’t allow your organization to fall behind, complete a risk analysis today to ensure your organization is not only compliant, but safe as well.

 

Five Nines Case Study: Click below to discover how Five Nines has been able to provide 24-hour support, improve the IT infrastructure, and find the right solutions for a critical access hospital in rural Nebraska.

 

ABOUT THE AUTHOR

---

Cindy Beach

Healthcare Consultant 

As the Five Nines Healthcare Consultant, Cindy is responsible for helping partners complete security assessments and provides HIPAA compliance expertise to Five Nines partners and staff.

Facts About Me

- My first car was a 1988 Buick Skylark.

- I am definitely a dog person! At one time, we had 25 German Short-Haired Pointers at our kennel.

- My favorite pizza topping is pineapple! I know that will spark a debate with the Five Nines staff.

- My first real job was a waitress at our local drive-in. I can still make a pretty great ice cream cone!

- The longest road trip I have ever been on was 22 hours. My husband and I drove to Orlando, Florida for our honeymoon and it rained the whole time!

 

 

 

Change is hard.

Ask any business owner and they’ll tell you that the slightest change can cause ripple effects throughout an organization if not properly administered. Changing the way you manage and maintain your IT is no different, which is why it’s important to understand the details of your new relationship with a managed service provider.

MSP’s, like Five Nines, offer a varying degree of ways they deliver services to their clients. Because of this, understanding the agreements in place will ensure there are no surprises as the relationship progresses. Here are a few different things to keep in mind when reviewing a managed service agreement.

 

Service Model

Generally, there is a flat monthly fee you will pay all managed service providers. The recurring amount you pay covers a differing amount of service delivery models.

1. Time & Materials (T&M): these agreements are generally a smaller (think retainer) monthly fee, with additional charges for support that isn’t considered regular maintenance or monitoring. You can expect an invoice, in addition to the monthly fee, at the end of the month for the amount of time that was spent supporting your environment.
2. Select: in a select agreement, your monthly payment covers a specified amount of time allocated per month to your business. Any time that goes into supporting your network that goes over your allotted time will be charged at an hourly rate.
3. All-You-Can-Eat: this monthly fee is determined either by the amount of employees at your business (Five Nines' model) or amount of devices that are being supported, and covers all support (both onsite and remote) with no additional fees.

What hardware do you own?

A common trend throughout the managed service industry is offering hardware-as-a-service (HaaS), which means MSP's will place hardware within the environment that offers an added benefit of security and manageability. They’ll do this charging a monthly fee for those services, which reduces the amount of capital needed up front to switch providers.

Always keep in mind what hardware is yours and what is your MSP’s. This is helpful if you ever decide to switch providers, knowing you’ll have to replace or buy that product from the provider.

 

Additional Monthly Services

Along with with the monthly support fee, there are some fairly common additional charges that will be on your managed service agreement:

• Backups: backups are the most critical aspect of your environment and must be properly maintained in case of a data breach. Oftentimes, there is a separate charge for backup software and offsite storage costs, which are always worth the peace of mind to ensure 100% backups.

• Additional Software: most MSP's are going to offer some variation of software that adds additional security benefits, such as antivirus and anti-spam tools. Five Nines includes both of those in their monthly support amount, but a tool like encrypted email is a service that you will be charged for.

These different pieces are generally what make up managed service agreements, but it’s always important to carefully review all charges on a proposal or invoice. Having a clear understanding of what you’re paying for will give you the peace of mind that your network has the proper tools to stay up efficient and secure.

 What does it look like when IT becomes an asset? Click below for the free Five Nines Power Hour "IT As An Asset", as we dive into IT responsibilities, service requests and security, as well as technology standards, budgeting, and IT training and knowledge.

 

ABOUT THE AUTHOR

---

Scott Pulverenti

Account Executive 

As an Account Executive, Scott is responsible for building relationships, solving problems, and extending the Five Nines brand into new markets.

Facts About Me

- I've recently become an avid runner. My goal is to run a full marathon!

- I'm a huge baseball fan - Go Royals!

- If I'm ever feeling down, you can usually find me chowing down on some grilled hot wings from the Watering Hole.

- In my free time I really enjoy cooking! I like my eggs over-easy, peppered, and with Louisiana hot sauce.

- I'm a bit of a history nut and have been spending a lot of my time recently reading about the American Revolution. 

Typing in a simple username and password is no longer enough to protect your data in the business technology world, which is why multi-factor authentication is such an important security measure. The cybercrime industry is after our most vulnerable information, and businesses are now forced to fight back with stronger cybersecurity practices.

According to the Verizon Data Breach Investigation Report, 81% of confirmed breaches involve weak, default, or stolen passwords. Multi-factor authentication is something that will benefit both your users and your organization. 

WHAT IS IT?

According to Yubico, there are plenty of opportunities available for hackers to take advantage of, as 55% of users do not use any form of multi-factor authentication at work.  While it is good to have a strong password, taking extra precautions is always recommended. When using multi-factor authentication, a user is only granted access into an account after completing extra steps to confirm that it is indeed their account. For example, if you are trying to access your email, instead of only entering your password for access, you may also receive a push notification on your mobile device to confirm that it's actually you. If the information doesn't match up, you don't receive access to the account.

How else does multi-factor authentication protect your personal information? If a hacker attempts to gain access to your account, you should receive a notification of some sort to complete the second step of logging in. If you are not attempting to access your account, and you are alerted by a notification, that is an immediate sign that someone could be trying to hack you. From there, you will have the ability to respond immediately by changing your passwords and contacting your IT provider. 

YOU HAVE OPTIONS

While any form of multi-factor authentication is a good start, here are some options you can consider:

• Any multi-factor authentication that requires an SMS, email, or voice call with one-time codes.

• "Push" prompts where users receive a notification on another device with an "approve" button as a way to confirm it is really them attempting to access their account.

• Universal 2-factor security keys users can plug directly into their computer to confirm access.

A strong security tip is to ensure your accounts are protected with strong, unique passwords and the best multi-factor option you can reasonably use. There are plenty of multi-factor authentication platforms out there, so it's important to consult your IT team on an option that works best for your business. While you can make multi-factor authentication an optional security setting, many businesses decide to make this extra step required to ensure they are following the strongest security practices.

Want to learn more about how you can take your cybersecurity to the next level? Sit back, grab some popcorn, and watch this FREE Five Nines Power Hour Webinar: A Layered Approach To Cybersecurity.

As a leader in your company, you’ve done the research and know that moving toward a managed IT services provider is what is best for the success of your business. The concern? Change is hard. Really hard sometimes. You have the advantage of seeing all the numbers and all the ways that this move makes sense. How do you explain that vision to your team, however, and make the transition as smooth and positive as possible without interrupting “business as usual”? We all know the struggles that come with change management.

Here are some key best practices to consider:

Stakeholder buy in

The first step in change management is to make sure that the key leaders in your organization are involved and understand the vision that supports the decision. They should be aware of and understand all the “why's” behind what made this the best direction for the company.

develop Clear process for implementation

Once your stakeholders are all in, work with them to develop the plan for implementation. This plan will need to be well thought out, and Five Nines can help! We have experience with the transition process and can point you in the right direction. You know your team best and will be able to adjust the process, so it makes the most sense for your company. The plan should have specific steps of implementation and key dates.

Recruit help from within

It’s important to determine who your A Players are so they can help in making the communication around this transition positive. There will undoubtedly be individuals that don’t like the change. Change is difficult for a lot of people and really difficult for others. These individuals could start conversations among employees that may spread negativity. If you can identify A Players who are respected by their peers and get them on board with the decision, they can be your boots on the ground to promote the positive aspects of the decision. Pull them in and explain some of the in-depth reasons for the change, and how it will help them be more successful in their role.

Communicate on all levels

You have your key players informed, Five Nines on your side, and you have a roll out plan that’s ready to go! The best way to communicate the plan is in person. Email is great for some things, but communicating big changes isn’t one of them. Incorporate the roll out in a staff meeting or at one of your department meetings. This is where the big picture should be communicated as well as how the switch will benefit them in their role. Only then should the plan for implementation be sent out via email, so everyone is aware of the process and key dates.

conduct normal check-ins with the team

Once the change has been rolled out, don’t “set it and forget it”. Touch base with some trusted employees to see how things are going. I always tell people when they ask the question “How are things going?” be prepared to listen! Be prepared to offer suggestions, but more importantly, listen. There may be some actionable items you could easily change that would make a big difference for them.

Give it time

Last but certainly not least, acceptance will take some time. Those that don’t like change will not see the positives right away. And that’s okay. You’ve taken the right steps to make the best decision for the company and your employees. They will grow accustomed to the new normal and ultimately see the new partnership as a positive.

Change can seem overwhelming at first, but it can be managed and built upon. Don’t let your fear of change keep you from making decisions that could move your company towards greater success and higher levels of productivity. The most successful companies positively embrace change, and Five Nines will be with you every step of the way.

Want to learn more about developing a company culture that drives operational success? We will cover what makes a culture, how technology can help your culture come to life, as well as formal best practices. Sit back, grab some popcorn, and watch this FREE Five Nines Power Hour Webinar presented by Taleena Stanbrough. 

 

about the author

---

Taleena Stanbrough

Director of Human Resources

As the Director of HR, Taleena’s goal is to do whatever she can to make living life to it’s fullest easier for each Five Niner. She achieves this, by fostering a culture of collaboration, trust and positivity!

Facts About Me

- I grew up on a farm outside of Red Cloud, NE, today, I live in Lincoln with my husband and two daughters.

- When I was a child I loved music and animals, so my dream job was a Zookeeper who listened to the radio all day!

- My spirit animal is Taylor Swift!

- I loathe doing laundry. Fortunately, my husband and I struck a deal when we got married that he does the laundry and I do the cooking.

- If I won $1 million I would buy a second home on a lake in the mountains for my family to enjoy! 

 

 

Did you know 83% of businesses expect their IT spending to grow or remain steady in 2019? Responses from 625 IT decision makers across the United States and Canada reflect confidence in 2019 with strong IT budgets, trends, and a focus on future technology.

Skills, support, and budgets are key to success when it comes to your technology. In this report, we analyze 2019 business IT trends by exploring:

• Challenges and Contributors to IT Projects
• IT Budgets by Industry and Company Size
• Overarching Trends

Download the full report to discover how successful organizations are investing in and transforming their IT throughout 2019.

 

This report is in partnership with Dell. 

Cybercrime is a real threat to all businesses, SMB's included. Statistics are only showing an increase in cyberattack methods, and successful attacks result in a significant loss of productivity and data. We want to show you why we stand by Cylance for Five Nines and our partners.

 

THE BASICS

Before diving into what Cylance is, it's important to understand what the software is protecting you from.

Malware: software that is intended to damage or disable computers and computer systems.

Ransomware: a type of malicious software designed to block access to a computer system until a sum of money is paid.

Since 2013, there has been a significant increase in malware and ransomware. In fact, since 2014 there have been over 120 million new malicious programs per year, and ransomware attacks have increased over 97% in the last two years. According to Symantec, 1 in 13 web requests lead to malware, up 3% from 2016. These statistics show that cybersecurity threats are at an all time high, which is why having the right tools in place to keep your organization protected is so important.

Want to jump straight to our free in-depth webinar about all things Cylance? Click here. 

 

WHAT IS CYLANCE

Cylance is a tool that prevents cyberattacks with artificial intelligence (AI). Artificial intelligence is the development of computer systems where systems are able to perform tasks that normally require human intelligence. Cylance is able to do this through machine learning, an application of AI that provides systems the ability to automatically learn and improve from experience without being explicitly programmed.

Cylance began in 2012, and has over 6,000 global customers, as well as over 10 million endpoints, and those numbers are growing each day. Cylance developed predictive endpoint threat prevention, which allows the software to predict, and then block cyber attacks on the endpoint in real time using pre-execution AI algorithms. They have an extremely high success rate at 99%+. Cylance also doesn't need a cloud connection to stop malware, as it can still do its' job without an internet connection, making it a one-of-a-kind product in the industry.

 

WHY COMPANIES CHOOSE CYLANCE

There are several reasons why Five Nines and other companies choose to utilize Cylance.

Effectiveness. Cylance is an extremely effective program with 99.7% effectiveness against all known malware.

Simplicity. Cylance is also very simple to manage, companies don't have to spend a lot of time managing it once it is set up within their environment, yet it increases ROI up to 250%.

Performance. Cylance only has a 1-2% impact to CPU, therefore user systems run faster, hardware lifespans are extended, and network bandwidth is reduced.

Cybercrime is a real threat, but protecting your business doesn't have to be guesswork. If Cylance is something that interests you, and you would like to see it in action while learning about how to apply it to your own business, our Power Hour might be a great resource for you. While the information above is a great overview, it may be more impactful to see exactly how Cylance works. 

Click below to access our free webinar, Cylance - Proactive Protection For Your Business, and tune in as one of our engineers provides in-depth information on Cylance while taking you through a series of demonstrations where you can see the software in action.