Author Archives: Megan Carnes

Florida Southern College Modernizes IT and Achieves Compliance with Thrive Download Now

 

Florida Southern College, a small private institution, overhauled its IT infrastructure and fortified its security by partnering with Thrive. Through Thrive’s Disaster Recovery as a Service (DRaaS) and Data Protection as a Service (DPaaS), featuring immutable backups, the college was able to meet regulatory standards, enhance infrastructure reliability, and protect critical data. This partnership has driven continuous IT improvements, successfully attaining the Gramm-Leach-Bliley Act (GLBA) and FERPA compliance.


Florida Southern College, facing the unique challenge of modernizing its IT infrastructure and meeting strict regulatory requirements with limited resources, initially relied on DSM for disaster recovery and data protection services. After Thrive acquired DSM, the partnership focused on risk assessments and proactive IT improvements, helping the college enhance security, achieve GLBA and FERPA compliance, and strengthen its digital capabilities.

Why Thrive Was Chosen

Florida Southern initially engaged Thrive to handle specific IT projects, such as migrating student emails to the Cloud, due to the college’s limited internal resources and small internal IT team. As Florida Southern’s needs evolved, Thrive’s expertise and hands-on support made them a key partner in tackling more considerable challenges like network security and compliance.

Florida Southern College Chief Information Officer Francine Neiling recognized the need for continuous risk assessments to identify and remediate IT vulnerabilities. Neiling prioritized Thrive’s risk assessments, which provided detailed insights into potential gaps and risks. These assessments allowed Florida Southern to allocate resources strategically and drive improvements while adhering to their budget constraints.

“Thrive’s assessments were critical in helping us understand our IT gaps and prioritize projects based on risk, all while staying within our budget. While other vendors delivered the basics, Thrive followed up with solutions and guidance to ensure everything worked seamlessly across our systems,” said Neiling.

Strategic Deployment of Advanced Security Measures

Thrive has become Florida Southern College’s primary partner for security and compliance, helping implement key regulations like GLBA and FERPA. They have been instrumental in deploying multi-factor authentication, improving data loss prevention, and securing student information. Thrive also provides regular network assessments and annual penetration tests to maintain compliance and security.

Thrive provided Florida Southern with a fully managed on-premise Cloud infrastructure, delivering scalable DRaaS and DPaaS with immutable backups. This flexible infrastructure met both operational and regulatory needs while continuously improving security and disaster recovery.

“Thrive’s on-premise Cloud infrastructure gave us the flexibility to meet our specific IT needs, while their immutable backups and orchestrated offsite recovery provided peace of mind, knowing our data was secure and recoverable,” said Neiling.

Thrive’s Impact

With Thrive’s continued support, Florida Southern College has significantly improved its network stability and security. By streamlining its network infrastructure, the college resolved issues caused by multiple vendors’ equipment that had previously led to campus-wide outages. Thrive’s guidance has also helped the college maintain regulatory compliance, saving time and money while allowing its small IT team to focus on daily operations.

In its 2024 audit, the college received only two minor findings, demonstrating the enhanced security posture and infrastructure resilience.

“Since partnering with Thrive, our security has improved dramatically. What would have taken us years to accomplish on our own was completed efficiently with their hands-on support. They’ve truly become an extension of our IT team,” said Neiling.

 

FSC logo

“Thrive has consistently gone above and beyond, offering the kind of hands-on support that makes a real difference. Without their expertise and dedication, we wouldn’t be where we are today.” ~ Francine Neiling, CIO, Florida Southern College

 

About Thrive

Thrive delivers global technology outsourcing for cybersecurity, Cloud, networking, and other complex IT requirements. Thrive’s NextGen platform enables customers to increase business efficiencies through standardization, scalability, and automation, delivering oversized technology returns on investment (ROI). They accomplish this with advisory services, vCISO, vCIO, consulting, project implementation, solution architects, and a best-in-class subscription-based technology platform. Thrive delivers exceptional high-touch service through its POD approach of subject matter experts and global 24x7x365 SOC, NOC, and centralized services teams. Learn more at www.thrivenextgen.com or follow us on LinkedIn.

Thrive Spotlight: Catie Kueppers – vCIO

Welcome back to another installment of our “Thrive Spotlight” blog series.

Our featured employee is Catie Kueppers, newly promoted to vCIO.  Catie, former Thrive System Administrator, oversaw the Mid 3 POD and was an acting Senior System Administrator for the Texas 01 POD.  She is mostly involved with Microsoft Azure and various Windows networks.

Catie lives in Palm Bay, Florida but is based out of the Maryland office since that is where Ease Technologies was located prior to being acquired by Thrive.  Outside of work, she loves going boating and exploring different islands around Sebastian Inlet with her husband who is a Veteran and 4 kids, 2 sons and 2 daughters.

Hi Catie!  Can you tell us about your background and how you came to Thrive?

I have been working within the IT industry for over 25 years.  I started in 1997, purchasing electronic components in bulk for computers and reselling them to electronics brokers.  Within this position, I was able to gain customer service experience and started working the Help Desk at Lance Inc. in 1998.  Since, I have worked for larger companies like IBM, Blue Cross & Blue Shield, Computers Sciences Corporation, Cessna Aircraft, and Bell Helicopter.  I worked my way up to various titles of Network Administrator in various areas of technology.

After working for such large companies, I wanted something smaller and more personal.  I landed at Ease Technologies in 2013 which then got acquired by Thrive in 2019.  Although Thrive is a much larger company, it still has a personal feel, while still getting to work with some of the same people from before we were acquired.

Where did you go to school or get training?

I have been a certified Microsoft Azure Administrator for 2 years as well as other Microsoft certifications. I also attended Kaplan University for a bachelor’s degree in Business Administration and Human Resources Management.

What do you most enjoy about working for Thrive?

I enjoy engaging with different people and teams every day.  Also, our customers, they keep me busy and challenged.  Thrive also offers a lot of learning opportunities which I love.

Are there any recent exciting projects at Thrive you can tell us about?

I am in the process of transitioning into my newly promoted role as vCIO, and I look forward to embracing the learning opportunities and challenges that come with this position.

 

Are you interested in learning more about Thrive? Click here!

Don’t forget to follow us on Twitter and LinkedIn for the latest news, and continue checking our blog for more in our “Thrive Employee Spotlight” series. Until next time…

Northeast Investment Management Partners with Thrive to Enhance IT Resilience and Security Download Now

 

Northeast Investment Management, Inc. (NIM), a Boston-based investment firm managing nearly $3 billion in assets, partnered with Thrive to address its IT and cybersecurity needs. Thrive’s managed IT services provided a complete, outsourced technology solution, allowing the firm to focus on its core business while ensuring regulatory best practices, safeguarding client data, and enhancing remote accessibility.

By partnering with Thrive, Northeast Investment Management (NIM), a registered investment advisor (RIA) in Boston, overseeing nearly $3 billion in assets for individual clients and family offices, has reinforced its cybersecurity, maintained regulatory compliance, and improved operational efficiency. NIM recently moved its Boston office and relied on Thrive to transition their entire IT infrastructure to their new location.

Why Thrive Was Chosen

Northeast Investment originally began working with Tier1Net, a firm later acquired by Thrive, based on a trusted recommendation. Thrive’s proactive approach to IT management and expertise in investment advisory compliance made it a natural choice for NIM.

“Thrive’s knowledge of compliance, especially cybersecurity and privacy, gave us confidence that they could manage these complexities. Their specialized, single-source IT and security support keeps us on track with industry standards,” shared Richard Manoogian, Chief Compliance Officer.

Solutions Delivered

Thrive provided NIM with a comprehensive suite of services, spanning network management, software maintenance, data security, and staff training. Thrive managed NIM’s migration to ThriveCloud, ensuring a secure, cloud-based environment that provides peace of mind for NIM.

Manoogian added, “Thrive delivers everything from infrastructure management to cybersecurity training. They’re a true one-stop shop, even providing us with tools like phishing tests to keep our team vigilant and secure against evolving threats.

Thrive’s Impact

Partnering with Thrive allowed Northeast Investment to reduce operational risks while ensuring their technology infrastructure met the stringent regulatory requirements. Thrive’s expertise saved the firm time and costs by negating the need for additional in-house IT staff.

“With Thrive, we don’t have to worry about our IT systems. They’re proactive, knowledgeable, and dependable. This partnership lets us focus on our clients, knowing our data is secure and compliant,” said Manoogian.

 

NIM Logo

“Thrive’s expertise means we can sleep easy knowing our systems are secure, and our team can work efficiently — no matter what challenges arise.” ~ Richard Manoogian, Managing Director, Chief Compliance Officer, Northeast Investment Management, Inc.

 

About Thrive

Thrive delivers global technology outsourcing for cybersecurity, Cloud, networking, and other complex IT requirements. Thrive’s NextGen platform enables customers to increase business efficiencies through standardization, scalability, and automation, delivering oversized technology returns on investment (ROI). They accomplish this with advisory services, vCISO, vCIO, consulting, project implementation, solution architects, and a best-in-class subscription-based technology platform. Thrive delivers exceptional high-touch service through its POD approach of subject matter experts and global 24x7x365 SOC, NOC, and centralized services teams. Learn more at www.thrivenextgen.com or follow us on LinkedIn.

Steps Organizations Can Take to Improve Cyber Resilience

Organizations’ devices, data and digital security infrastructure are constantly under threat from bad actors. In 2023, more than 880,000 cybercrime complaints were recorded by the FBI, nearly 10% more than in 2022, resulting in losses exceeding $12.5 billion. With the number of threats and potential losses, only growing, building a sophisticated cybersecurity program is an absolute necessity for modern organizations.

To thrive in these conditions, cyber resilience is key. Cyber resilience refers to an organization’s ability to prevent, address and recover from cyberattacks. Today, these attacks can come from many sources and extend far beyond data breaches. Cyber resilience is all about how well an organization can withstand attacks and operate successfully, even while navigating cybersecurity incidents.

Secure Your Healthcare Organization with Better Cyber Resilience

It’s time for healthcare organizations to reevaluate their cybersecurity posture and cyber resilience. Last month was Cybersecurity Awareness month which brings a timely reminder for healthcare organizations to prioritize their digital defenses—not just for their own benefit, but for the benefit of the world around them. In an industry where patient data and critical medical and technology systems are increasingly interconnected, improving cyber resilience is no longer optional—it’s essential for protecting sensitive information and maintaining operational continuity.

Thrive Spotlight: Ariel Amarante – Engineer, Security Deployment

Welcome back to another installment of our “Thrive Spotlight” blog series.

Our featured employee is Ariel Amarante, Engineer, Security Deployment – Onboarding/ Pro Services.  As a Security Deployment Engineer, Ariel’s main focus is to ensure a seamless transition to the security product implementation for our clients.  He gets to ensure clients can execute their daily roles without having to worry about potential nefarious actors impeding on their organization.

Ariel lives in Yonkers, NY and works out of our Greenwich, CT office.  Outside of work, he loves spending time with his three children.  They do all types of fun things, but their favorite is taking road trips together.  Ariel is a HUGE Yankees fan, so unless he is on a client call, you will see him in his Yankees hat.  He is also an aquarist; he has saltwater fish and coral.

Hi Ariel!  Can you tell us about your background and how you came to Thrive?

I started in IT as a Helpdesk Support Intern during high school in the MID Department for the NYC Department of Environmental Protection.  Since then, I have had the privilege of road mapping, implementing, and maintaining new technologies across various industries such as hospitality, retail, and then landing in financial services.  I joined Edge Technology which then got acquired by Thrive in 2022.

Where did you go to school or get training?

I got my AS at Queensborough Community College and started my BA in Computer Science at St. John’s University.  Due to life changes, I left St. John’s University and focused on getting certified with different technologies I was already supporting with the NYC Department of Environmental Protection.  I started with getting A+ certified which led me to getting my MSCE and CCNA.  Since then, I have gotten a few additional certifications and recently got my Mimecast certifications.

What do you most enjoy about working for Thrive?

The organizations efficiency and the comradery that we have here.  We all work together to achieve our goals.  Whenever I need assistance, I can reach out to one of my colleagues and they are always willing to help me. #OneThrive holds true.

As part of the security development team, I get to put clients’ minds at ease by ensuring the security applications hand-picked for their environments protect their organization collectively, bringing industry best practices and standards to secure them from the latest unforeseen threats.  It brings me a sense of pride to know that we can help others while doing something that I am passionate about. 

Are there any recent exciting projects at Thrive you can tell us about?

There is excitement every day!  As new products are introduced, we have a front row on learning and implementing these products for our clients.  I always tend to take on projects that I have never implemented before to keep the cogs turning in my head.  I love to learn by being in the driver seat and figuring it out if I get stuck, which leads back to #OneThrive and how the team always ready to step in and help!

 

Are you interested in learning more about Thrive? Click here!

Don’t forget to follow us on Twitter and LinkedIn for the latest news, and continue checking our blog for more in our “Thrive Employee Spotlight” series. Until next time…

Cybersecurity Awareness Month: Ransomware Attacks

Cybercriminal tactics continue to become more sophisticated, so it is also vital for healthcare organizations to prioritize continual improvement of cybersecurity measures to stay ahead of potential threats. However, IT teams also need to work with colleagues in other departments to develop business continuity plans that ensure the organization can continue to deliver care and support critical business functions in the event of a cyberattack.

E.R. Jahna Industries Improves Security Posture and IT Efficiency with Thrive’s Managed Services Download Now

 

E.R. Jahna Industries, a Florida-based sand mining company, needed to enhance its IT infrastructure and cybersecurity. With limited internal resources, it turned to
Thrive for a comprehensive IT and cybersecurity solution. Thrive delivered a multi-layered cybersecurity framework, migrated critical servers to its private Cloud, and implemented detection and response systems. This partnership allowed E.R. Jahna Industries to safeguard its operations, reduce risks, and free up internal resources.

The Challenge

E.R. Jahna Industries, a leader in sand mining, plays a crucial role in various industries across Florida and Southeast Georgia markets, including construction, manufacturing, and infrastructure. However, their Director of IT quickly realized they were falling behind in terms of security and technology. With a small internal team, E.R. Jahna Industries needed a trusted partner to elevate IT operations and protect assets. That’s where Thrive came in.

Why Thrive Was Chosen

After assessing their security posture and IT environment, E.R. Jahna Industries’ Director of IT, Thomas Single, knew that addressing cybersecurity was a priority. Thrive, with its reputation and existing relationship, was the ideal partner. But it wasn’t just about the technical capabilities but about trust and partnership.

“Thrive was chosen not just because of the technology or cost. It was more about the relationship. I consider them partners, and I knew they could help us get where we needed to be,” Single explained.

Strategic Deployment of Advanced Security Measures

Thrive implemented a comprehensive solution that began with building an Active Directory domain, migrating servers to Thrive’s private Cloud, and enhancing detection and response systems. Their approach included multiple layers of security, addressing infrastructure weaknesses, and protecting E.R Jahna Industries’ operations from potential threats.

“We didn’t have an Active Directory domain in place, and everyone had too much access. Thrive stood up the domain, migrated all our PCs, and helped us every step of the way,” said Single. “They were with us through the entire process, ensuring we had the right tools and systems in place.”

Additionally, Thrive took over the management of cybersecurity training for E.R. Jahna Industries employees, relieving internal resources and providing better coverage with ongoing threat monitoring.

Thrive’s Impact

Since partnering with Thrive, E.R. Jahna Industries has significantly improved its IT security and operations. Enhanced detection systems quickly neutralize potential threats, giving the team a sense of calm and confidence. The migration of critical infrastructure to Thrive’s private Cloud has freed up internal resources, allowing the company to focus on core business activities.

“Since partnering with Thrive, we’ve not only enhanced our security posture, but we’ve also streamlined our IT operations. They’ve helped us prevent issues before they become real problems, which has had a measurable impact on the stability and efficiency of our business.”

 

ER Jahna logo

“Thrive’s team is at the top of their game. The handoff between the project and support teams was seamless, and every resource we worked with was professional, knowledgeable, and easy to work with.” When I first joined the company and did the assessment, I did not sleep at night, thinking we would have a problem, and I was just waiting for that ticking time bomb. Since we put all the tools in place and engaged with Thrive, I sleep at night. I sleep very well at night.” ~ Thomas Single, IT Director, E.R. Jahna Industries

 

About Thrive

Thrive delivers global technology outsourcing for cybersecurity, Cloud, networking, and other complex IT requirements. Thrive’s NextGen platform enables customers to increase business efficiencies through standardization, scalability, and automation, delivering oversized technology returns on investment (ROI). They accomplish this with advisory services, vCISO, vCIO, consulting, project implementation, solution architects, and a best-in-class subscription-based technology platform. Thrive delivers exceptional high-touch service through its POD approach of subject matter experts and global 24x7x365 SOC, NOC, and centralized services teams. Learn more at www.thrivenextgen.com or follow us on LinkedIn.

Thrive Acquires Michigan-based Safety Net

Leading Global MSP/MSSP Establishes Midwest Presence

Boston, MA, October 16, 2024 – Thrive, a global technology outsourcing provider for cybersecurity, Cloud, and IT managed services, today announced the acquisition of Safety Net, a leading Michigan-based IT services firm. With the acquisition, Thrive will expand its reach to the Midwest, enabling Safety Net’s customers to have access to Thrive’s industry-leading global Security Operation Center (SOC) & Hybrid Cloud solutions.

Thrive’s mission is to empower their customers to harness the promise of technology, achieving success by proactively utilizing IT, cybersecurity, and Cloud best practices to drive ROI and desired business outcomes for their valued clients. The union of Thrive and Safety Net will ensure that customers in Michigan will continue to enjoy the exceptional high-touch managed services they’ve come to love, along with newly enhanced 24x7x365 global SOC, cybersecurity, and hybrid cloud resources.

“Safety Net’s similar business philosophies and company culture are a perfect fit as our Midwest regional platform,” said Rob Stephenson, CEO of Thrive. “Their product and service sophistication, client first mentality, and dedicated team of talented engineers will allow Thrive to grow in Michigan, as well as expand deeper into other Midwest markets with their strong leadership team.”

This latest acquisition comes at a time of strong growth for Thrive, having completed eleven previous acquisitions over the past two years, most recently acquiring The Longleaf Network. In addition to geographic expansion, Thrive continues to grow its service offerings to meet the growing needs of its customers, including Thrive Incident Response & Remediation, Managed Detection and Response, and Dark Web Monitoring.

“With over two decades of providing strategic IT solutions to Michigan businesses, our team is excited to accept the challenge of accelerating our growth to become the premier managed services provider in the Midwest,” said Tim Cerny, CEO of Safety Net. “Our mission seamlessly aligns with Thrive’s commitment to deliver the best technology outcomes for customers.  With their partnership, we look forward to elevating our technology capabilities to fulfill the rapidly emerging IT complexity that our clients face.”

To learn more about Thrive and its offerings, visit the website.

About Thrive

Thrive delivers global technology outsourcing for cybersecurity, Cloud, networking, and other complex IT requirements. Thrive’s NextGen platform enables customers to increase business efficiencies through standardization, scalability, and automation, delivering oversized technology returns on investment (ROI). They accomplish this with advisory services, vCISO, vCIO, consulting, project implementation, solution architects, and a best-in-class subscription-based technology platform. Thrive delivers exceptional high-touch service through its POD approach of subject matter experts and global 24x7x365 SOC, NOC, and centralized services teams. Learn more at www.thrivenextgen.com or follow us on LinkedIn.

Contacts

Amanda Maguire

thrive@v2comms.com

 

Digital Divide: UK’s Cyber Security Stronger, but Are Businesses Still Fragile?

Should we relax? It’s official: Britain has made significant recent progress regarding its resilience against cyber-attacks. In the July King’s Speech, a new bill was outlined to further protect the critical infrastructure and digital services that Brits rely on daily.

This is a significant step in addressing the rapidly growing number of relentless attacks that devastate our health services, government departments, educational and democratic institutions, and even smaller local authorities. Yet, the urgency of the situation is clear, as we have increasing evidence of the fragility of the UK’s cyber infrastructure – and the aggressive threats the country is facing.

What will this bill do?

The crucial updates made to the existing framework will expand its remit, protecting more UK digital services and supply chains. Regulators will also reportedly be put on a ‘strong footing’ to guarantee the implementation of safety measures, including cost recovery mechanisms and additional powers that facilitate vulnerability investigation.

This legislation is a beacon of hope, as it mandates increased incident reporting to give government teams more accurate data on cyber threats. This includes where a business has been a ransom victim, improving their understanding of current threats and highlighting potential further ones by widening the net regarding the nature of incidents that entities are to report.

This bill will extend UK-wide and is fully endorsed by the NCSC. Its CEO, Felicity Oswald, warned that the UK’s essential service providers cannot afford to ignore these threats.

Why the new legislation?

Two government reviews found that the original frameworks had a positive impact, but progress needed to be made faster to keep up with the rapidly evolving threats to the nation. Over 50% of essential service operators have updated their processes and policies since the creation of the cyber regulations in 2018, hardly enough to match the required pace.

In June, cybercriminals struck the NHS, postponing critical appointments and procedures at some of London’s most significant hospitals, such as Guy’s, St Thomas’, and King’s College. Last year, we saw Sefton, a village in Merseyside, fight off 30,000 cyber-attacks on its council infrastructure per month, with the BBC reporting last month that councils remain at the mercy of criminal hackers. These attacks are not just statistics, they are real and they are affecting businesses and services that we rely on.

This reform is well-needed, with countless examples of attacks like these affecting millions of Brits. However, despite these recent changes, businesses remain fragile throughout the country.

New vulnerabilities

In 2023, the UK led the list of global data breaches. The country was shaken by the largest cyberattack in 2023, as cyber protection firm DarkBeam failed to protect 3.8 billion records. The leak was uncovered by the CEO of SecurityDiscovery, Bob Diachenko, who informed the company of its leak. They promptly addressed and fixed the leak. According to Diachenko, this type of data leak is usually caused by human error, such as forgetting to encrypt data following maintenance.

We also have witnessed a spike in attacks on a new sector: the construction industry. A new report by risk advisory firm Kroll has indicated that cyber-attacks on construction companies doubled in the first quarter of 2024 compared to last year. Kroll advised this increase was most probably down to the ‘sophistication of business email compromise for either financial gain or as a pivot into downstream attacks.’

The company confirmed that the construction sector had seen steady growth in email compromise from 2023 to 2024. According to Construction News5, on-the-go work culture is the culprit behind doubling the frequency of these attacks. Kroll warned: ‘An employee may be more likely to fall for a phishing lure if they are receiving the email on the road, making them potentially less vigilant about the signs of fraud.’

SMS and voice-based tactics have been reported, which raises concern surrounding the potential use of deep fakes and other AIs to further streamline phishing attacks. An insider threat case examined by Kroll earlier this year saw an employee impersonated, a method AI could efficiently utilise.

Arup, a British multinational firm headquartered in London providing services across the building sector, confirmed in May of this year that it was the victim of a £20 million deep fake fraud attack after an employee was manipulated into sending over the sum via an AI- generated video call. The attackers posed as ‘senior officers of the company’ to dupe their way to the money. Arup’s global CIO, Rob Greig, stated that the company had been the victim of a barrage of attacks, increasing both in potency and frequency, in the months leading up to the large-scale attack.

Greig’s quote to Building.co.uk illustrates the ordeal: ‘This is an industry, business, and social issue, and I hope our experience can help raise awareness of the increasing sophistication and evolving techniques of bad actors.’

Police in Hong Kong, where the attack occurred, have made no arrests thus far, and the cyber-criminals are still at large.

As a chilling final example, officials have confirmed that the British critical national infrastructure (CNI) ‘could be left dangerously exposed’ if managers do not appropriately address the increasing cyber-attack threat caused by tension between Britain, China, Russia and Iran.

How fragile is the UK’s critical national infrastructure?

The BBC reported a ‘hack’ in May of this year, resulting in a ‘significant data breach’ of payroll data from the MoD. The then Defence Secretary, Grant Shapps, warned that state involvement could not be ruled out. In the days and hours following, at least two additional cyber-attacks hit the Scottish NHS and the UK Border Force.

NHS Dumfries and Galloway revealed that children’s mental health data had been published, and Border Force e-passport gates ceased to work at Britain’s major airports. Considering simmering tensions with other states and escalating wars in Ukraine and Palestine, infrastructure providers are left concerned about potential future attacks.

The lines between political interference and targeted cyber attacks are starting to blur. Considering this, coupled with more and more sectors finding themselves the new victim in the crosshairs of increasingly sophisticated and ruthless attacks, do not let your company be next.

If you are targeted by a bad actor, do you have a well-rehearsed incident response plan in place? Contact Thrive to learn how we can help fortify your digital approach and keep you and your team safe from an ever-evolving threat landscape. We specialise in helping medium sized businesses fortify their critical cyber infrastructure.