Scott Alldridge

We see that a lot where they just think that they've, you know, they've got, they're smart.

They've got it figured out.

They will think they're better than best practices.

They'll use words like that.

And it's like, really?

And then when you start working with them a little bit, you start to realize, yeah, you've got huge gaps, huge pieces that are missing and you're really vulnerable.

Yeah.

So it's a big it's a big deal right now.

And so a lot of people, you know, the executive suite.

is kind of fooled into thinking because those guys want to protect their jobs too.

So they're telling them, no, no, we're good.

We're really secure.

We've, we just deployed the latest tool, whatever tool that is, but back to my fool with the tool could still be a fool.

So it's kind of interesting to see it from that perspective too.

And then a lot of them have providers.

So like, well, we pay X, Y, and Z company, like my company and MSP or an MSSP to deliver a certain amount of services.

But how do you know, are they giving you regular reporting or,

To provide, again, back to kind of attestation.

So one of the things we do is we use a full third party.

Then we can't be the people managing your cybersecurity, but then telling you that we're doing a good job.