Business of Tech: Daily 10-Minute IT Services Insights
In 10 minutes daily, The Business of Tech delivers the latest IT services and MSP-focused news and commentary. Curated to stories that matter with commentary answering 'Why Do We Care?', channel veteran Dave Sobel brings you up to speed and provides resources to go deeper. With insights and analysis, this focused podcast focuses on the knowledge you need to be effective, profitable, and relevant.
10
AI Liability and Data Risk Shifts: Veeam’s Platform Pivot and Rich Freeman on MSP Readiness
<p>The episode reveals a growing governance gap as the central structural shift in the IT services sector, driven by accelerated AI adoption and increasing automation. Companies such as OpenAI, Anthropic, Veeam, and Auvik are reframing their market positions around the operational risks and requirements introduced by AI agents, data automation, and new service delivery models. This evolution is underscored by the rising number of AI agents—projected by IDC to reach 2.3 billion by 2030—operating largely outside of current oversight and frequently with excessive or inappropriate permissions.</p> <p>The principal development discussed is Veeam’s announcement of its Data AI Com...
Structured Vendor Programs Increase Operational Load for MSPs
<p>The dominant structural shift highlighted is the increasing systematization and formalization of vendor-to-MSP growth channels, where vendors now dictate partner engagement through structured programs, marketplaces, and packaged offers. According to Dave Sobel, this trend is driven by vendors such as Microsoft, NinjaOne, GoTo (LogMeIn), and Forcepoint, each advancing formal partner networks and explicit funding paths. The episode contends that these programs operate less as genuine strategies for MSPs and more as distribution mechanisms, shifting operational and support burdens downstream to service providers.</p> <p>Primary supporting evidence comes from the 2026 Microsoft Partner Global Benchmark and Success Index from Maven...
AI Governance Hurdles in Defense: Jason Tierney Examines CMMC Barriers for MSPs
<p>The episode details a tightening regulatory environment driven by new enforcement timelines for Cybersecurity Maturity Model Certification (CMMC), altering how MSPs and IT service providers are expected to deliver both compliance and operational services for U.S. defense contractors. Structural pressure stems from the Department of Defense making CMMC Level 2 compliance a contractual mandate for approximately 300,000 defense contractors, shifting risk and accountability towards providers who manage compliance workflows, technical environments, and client behaviors. C3 Integrated Solutions and their dual CMMC Level 2 certifications exemplify this transition, with clear implications for co-ownership of compliance outcomes and increased scrutiny on provider practices.<...
Google Redesigns Search: Automation Control Emerges as Core MSP Responsibility
<p>The structural shift outlined in this episode is the rapid evolution of search and productivity interfaces from static query tools to agentic platforms capable of autonomous action, oversight, and automation. Companies such as Google are redesigning search at the interface level, integrating multimodal input and agentic workflows powered by AI models like Gemini 3.5 Flash. The dynamic is not competition at the model level, but rather a pivot toward which provider can offer policy enforcement, cost controls, compliance, and documented governance over increasingly complex agent-driven environments.</p> <p>The most consequential development is Google’s redesign of its search box fo...
Security Proof Becomes an MSP Service: Insurance, Trustmarks, and the Evidence Operating Model
<p>Security operations for MSPs are undergoing a structural shift from simply deploying additional tools to establishing a liability-focused accountability model, where the ability to provide operational evidence of controls is becoming as critical as the tools themselves. This shift is catalyzed by corporate insurance, procurement, and third-party verification structures—such as those cited by WatchGuard, Assurix, and the NIST AI cybersecurity overlays—demanding verifiable security outcomes and alignment with external standards, rather than relying on provider assertions alone.</p> <p>Survey data referenced from Cybersmart and Beta News reveals that 75% of MSPs experienced at least one breach in the past...
Vendor-Integrated AI Increases Liability Exposure for MSPs Managing Client Systems
<p>The dominant structural shift highlighted in this episode is the migration of AI from experimental tools into directly embedded workflows within widely used small business platforms. Vendors like Anthropic, with its Claude for Small Business connectors to QuickBooks, HubSpot, Canva, Google Workspace, and Microsoft 365, are abstracting away technical complexity by offering concrete, prebuilt automations that address specific business processes. This embedding moves operational risk and ambiguity from model selection to the permissions layer, where control, oversight, and accountability become central concerns for providers supporting these environments.</p> <p>A key supporting development is Anthropic’s rapid market penetration, with th...
Chad Gaydos on AI Moving Procurement from Record-Keeping to Automated Decision Execution
<p>The episode highlights a structural transition from software systems that record tasks to platforms that actively participate in business decisions, particularly through agentic AI in procurement. This shift is anchored in the adoption of AI-driven SaaS solutions by mid-market organizations, as seen with Procurify, which reports managing over $100 billion in organizational spend. The mechanism moves beyond basic automation, assigning software agents responsibilities that were traditionally human—such as flagging compliance breaches or routing approvals—directly within operational workflows.</p> <p>According to Chad Gaydos, current deployments of such agentic AI commonly automate tasks like invoice detail verification, policy enforcement, and...
AI Integration Into PSA and Security Platforms Forces New Governance Demands on MSPs
<p>The core structural shift described in this episode is the integration of AI as an active workflow actor within managed service environments, not simply as an isolated tool. This mechanism alters the governance and accountability requirements for MSPs, as AI now interacts directly with core business platforms and operational data. Companies like Microsoft are embedding AI features—such as Copilot and a legal AI agent—across productivity and security environments, while reports from Axios Future of Cybersecurity and The Register highlight that AI activity is increasingly touching managed identity, email, data, and security infrastructures.</p> <p>The episode’s primar...
AI Accelerates Exploit Creation and Evidence Burden for MSPs, Says Google and Proofpoint
<p>The central structural shift identified is the acceleration and scaling of cyber risks due to artificial intelligence, which turns formerly expert-driven security processes into repeatable, rapid workflows. Major threat intelligence units, including Google's Threat Intelligence group, are now documenting the use of AI in both identifying and weaponizing software vulnerabilities. The landscape is further shaped by the proliferation of AI-generated and AI-assisted online content, contributing to an environment where traditional verification and control mechanisms are less reliable.</p> <p>The episode presents concrete evidence: Google reported criminal hackers leveraging AI models—explicitly noting the use of non-Google technology—to disc...
AI Agents Create New Accountability Risks for MSPs Managing Cloud Environments
<p>AI systems are increasingly embedded as non-human participants within managed environments, driving a structural shift in operational responsibility and exposure for MSPs. This shift is characterized by the integration of AI-powered tools—such as note takers, copilots, connectors, and agents—into core business workflows and SaaS platforms. Companies like Google, Microsoft, and ServiceNow are formalizing AI governance with platform features such as agent registries, policy enforcement gateways, and cross-platform audit trails. Reports from industry sources, including Wired, Rubrik, and regulatory bodies in the EU, substantiate these developments and highlight changing expectations for accountability and control.</p> <p>A key find...
