{"id":25986,"date":"2026-07-16T11:28:36","date_gmt":"2026-07-16T15:28:36","guid":{"rendered":"https:\/\/www.sherweb.com\/blog\/?p=25986"},"modified":"2026-07-16T11:28:36","modified_gmt":"2026-07-16T15:28:36","slug":"ispm-identity-security-msps","status":"publish","type":"post","link":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/","title":{"rendered":"What is ISPM and why does it matter for MSPs?"},"content":{"rendered":"<p><span data-contrast=\"auto\">Identity is now the\u00a0<\/span><a href=\"https:\/\/www.sherweb.com\/blog\/security\/identity-first-security-msps\/\"><span data-contrast=\"none\">front door to almost every client environment<\/span><\/a><span data-contrast=\"auto\">\u00a0you manage. Attackers know it, which is why stolen credentials and over-permissioned accounts turn up in so many breaches. Identity security posture management (ISPM) gives MSPs a way to see that risk clearly and act on it before it becomes an incident.\u00a0Here&#8217;s\u00a0what ISPM is, the risks it\u00a0catches\u00a0and where it fits in your service offering.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">What is\u00a0ISPM?<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">ISPM<\/span><span data-contrast=\"auto\">\u00a0is a way to continuously understand and improve how identities are set up and used across systems. Identities include users, service accounts, applications<\/span><span data-contrast=\"auto\">\u00a0and anything else that can log in or access data. ISPM tools look at how those identities are configured and how much access they have, then point out where things are too open or risky.\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">For an MSP just getting familiar with the concept, it helps to think of ISPM as a constant health check for identity and access. Instead of only setting up permissions once and hoping they stay correct, ISPM keeps watching for problems as environments change.\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">As we know,\u00a0identities and access\u00a0change\u00a0for multiple reasons.\u00a0<\/span><span data-contrast=\"auto\">Roles change.\u00a0<\/span><span data-contrast=\"auto\">Issues need to be troubleshooted.\u00a0<\/span><span data-contrast=\"auto\">AI agents get tested or created.\u00a0\u00a0New applications\u00a0get\u00a0installed.<\/span><span data-contrast=\"auto\">\u00a0These changes\u00a0aren\u2019t\u00a0always permanent<\/span><span data-contrast=\"auto\">,<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">so<\/span><span data-contrast=\"auto\">\u00a0we need the ability to not only detect the change but\u00a0to also\u00a0make sure those changes\u00a0which are permanent\u00a0don\u2019t\u00a0cause adverse effects.<\/span><\/p>\n<p><span data-contrast=\"auto\">For MSPs, the most common identity management system covered by popular ISPMs is Entra ID (i<\/span><span data-contrast=\"auto\">.<\/span><span data-contrast=\"auto\">e<\/span><span data-contrast=\"auto\">.,<\/span><span data-contrast=\"auto\">\u00a0<\/span><a href=\"https:\/\/www.sherweb.com\/productivity\/microsoft-365\"><span data-contrast=\"none\">Microsoft 365<\/span><\/a><span data-contrast=\"auto\">).\u00a0<\/span><span data-contrast=\"auto\">Anyone familiar with\u00a0Entra and\u00a0<\/span><span data-contrast=\"auto\">who<\/span><span data-contrast=\"auto\">\u00a0us<\/span><span data-contrast=\"auto\">es<\/span><span data-contrast=\"auto\">\u00a0it for<\/span><span data-contrast=\"auto\">\u00a0identity and access<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">management<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">(<\/span><span data-contrast=\"auto\">IAM<\/span><span data-contrast=\"auto\">)<\/span><span data-contrast=\"auto\">\u00a0understand<\/span><span data-contrast=\"auto\">s<\/span><span data-contrast=\"auto\">\u00a0how complex and sometimes confusing identities, role<\/span><span data-contrast=\"auto\">&#8211;<\/span><span data-contrast=\"auto\">based access controls<\/span><span data-contrast=\"auto\">\u00a0and\u00a0application access can get.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">What are the capabilities of the most common ISPMs<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">Most ISPM tools focus on\u00a0<\/span><span data-contrast=\"auto\">a handful\u00a0<\/span><span data-contrast=\"auto\">of areas:<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"8\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Visibility<\/span><\/b><span data-contrast=\"auto\">:\u00a0<\/span><span data-contrast=\"auto\">They connect to identity platforms like\u00a0Entra ID,\u00a0<\/span><a href=\"https:\/\/www.sherweb.com\/productivity\/google-workspace\"><span data-contrast=\"none\">Google Workspace<\/span><\/a><span data-contrast=\"auto\">,\u00a0Active Directory<\/span><span data-contrast=\"auto\">\u00a0and others to map out who has access to what. They highlight things that are hard to see manually, like inherited permissions, stale accounts<\/span><span data-contrast=\"auto\">\u00a0or unused privileges.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"8\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">R<\/span><\/b><b><span data-contrast=\"auto\">isk detection<\/span><\/b><span data-contrast=\"auto\">. ISPM platforms flag risky configurations such as accounts with excessive permissions,\u00a0missing\u00a0<\/span><a href=\"https:\/\/www.sherweb.com\/blog\/security\/multi-factor-authentication\/\"><span data-contrast=\"none\">multi-<\/span><span data-contrast=\"none\">factor authentication (MFA)<\/span><\/a><span data-contrast=\"auto\">\u00a0or risky sign in patterns. Many tools also provide recommendations that are easy to understand\u00a0and are also\u00a0tied to a security framework (like\u00a0<\/span><a href=\"https:\/\/info.sherweb.com\/cis-controls-implementation-bundle\"><span data-contrast=\"none\">CIS Controls<\/span><\/a><span data-contrast=\"auto\">) or best practices, such as suggesting the removal of unused roles or tightening access to sensitive data.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Automation<\/span><\/b><b><span data-contrast=\"auto\">.\u00a0<\/span><\/b><span data-contrast=\"auto\">Automation<\/span><b><span data-contrast=\"auto\">\u00a0<\/span><\/b><span data-contrast=\"auto\">is becoming a key feature<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">of these tools<\/span><span data-contrast=\"auto\">\u00a0as well.\u00a0Some ISPMs can automatically fix issues or at least create workflows to review and approve changes.\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Reporting<\/span><\/b><b><span data-contrast=\"auto\">.\u00a0<\/span><\/b><span data-contrast=\"auto\">This<\/span><b><span data-contrast=\"auto\">\u00a0<\/span><\/b><span data-contrast=\"auto\">is also a core capability. MSPs and their customers can get clear reports that show current posture, trends over time<\/span><span data-contrast=\"auto\">\u00a0and improvements being made.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"3\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"3\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Integration<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">M<\/span><span data-contrast=\"auto\">any\u00a0ISPM solutions integrate with\u00a0commonly used\u00a0security tools like SIEM and XDR platforms, helping teams connect identity risks with broader security monitoring.\u00a0After all,\u00a0the core\u00a0ten<\/span><span data-contrast=\"auto\">e<\/span><span data-contrast=\"auto\">t of a SOC is correlated visibility between\u00a0different systems.\u00a0<\/span><span data-contrast=\"auto\">That visibility is critical to ensure there are no gaps or disjointed event logs.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">What risks\u00a0<\/span><span data-contrast=\"none\">does<\/span><span data-contrast=\"none\">\u00a0ISPM<\/span><span data-contrast=\"none\">\u00a0help fix<\/span><span data-contrast=\"none\">?<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">ISPM targets a few recurring p<\/span><span data-contrast=\"auto\">roblems:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">O<\/span><\/b><b><span data-contrast=\"auto\">ver<\/span><\/b><b><span data-contrast=\"auto\">&#8211;<\/span><\/b><b><span data-contrast=\"auto\">permissioned access<\/span><\/b><span data-contrast=\"auto\">. Many users and service accounts end up with far more access than they need, which creates an easy path for attackers\u00a0to gain access to confidential systems or information\u00a0if an account is compromised.\u00a0ISPM can also help\u00a0identify\u00a0when issues like temporary role changes accidentally become permanent or to help with permission\u00a0creep, in which people\u00a0retain\u00a0permissions between internal role changes in a company.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">I<\/span><\/b><b><span data-contrast=\"auto\">dentity\u00a0sprawl<\/span><\/b><span data-contrast=\"auto\">. As companies adopt more SaaS and cloud services, identities get created and forgotten. Dormant or unmanaged accounts can become entry points for attackers.\u00a0Not only does this cause potential risks<\/span><span data-contrast=\"auto\">,<\/span><span data-contrast=\"auto\">\u00a0but tightening up identities helps with user onboarding processes as well.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"3\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Weak authentication<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">ISPM can highlight where\u00a0<\/span><span data-contrast=\"auto\">MFA\u00a0<\/span><span data-contrast=\"auto\">is missing or not enforced, and where password policies are not strong enough.\u00a0As we know, there are different forms of MFA\u00a0we can implement.\u00a0<\/span><span data-contrast=\"auto\">While SMS<\/span><span data-contrast=\"auto\">&#8211;<\/span><span data-contrast=\"auto\">based MFA checks off a box, challenge auth or FIDO tokens provide superior protection<\/span><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"4\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">P<\/span><\/b><b><span data-contrast=\"auto\">oor visibility<\/span><\/b><span data-contrast=\"auto\">. Without a clear picture of identity access, security teams often\u00a0operate\u00a0reactively. ISPM provides that\u00a0visibility\u00a0so problems can be found and fixed earlier.\u00a0This proactive approach helps reduce the likelihood of an incident or potential financial loss.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ul>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">How should\u00a0<\/span><span data-contrast=\"none\">SMB<\/span><span data-contrast=\"none\">s<\/span><span data-contrast=\"none\">\u00a0<\/span><span data-contrast=\"none\">adopt<\/span><span data-contrast=\"none\">\u00a0<\/span><span data-contrast=\"none\">ISPM?<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">Here\u2019s\u00a0a practical\u00a0<\/span><span data-contrast=\"auto\">path:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<ol>\n<li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"6\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Inventory\u00a0<\/span><\/b><b><span data-contrast=\"auto\">where<\/span><\/b><b><span data-contrast=\"auto\">\u00a0identities live today<\/span><\/b><span data-contrast=\"auto\">. This usually includes Microsoft 365, cloud platforms like AWS or Azure,\u00a0on-prem<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">systems<\/span><span data-contrast=\"auto\">\u00a0(like Active\u00a0Directory<\/span><span data-contrast=\"auto\">)<\/span><span data-contrast=\"auto\">\u00a0and any major SaaS applications.\u00a0A\u00a0simple inventory is a strong first step.\u00a0After all, the\u00a0<\/span><a href=\"https:\/\/www.nist.gov\/cyberframework\"><span data-contrast=\"none\">NIST Cybersecurity<\/span><span data-contrast=\"none\">\u00a0Framework<\/span><\/a><span data-contrast=\"auto\">\u00a0teaches\u00a0us that we\u00a0can\u2019t\u00a0move to the Protect pillar until we first fulfill the Identify pillar.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"6\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">Get<\/span><\/b><b><span data-contrast=\"auto\">\u00a0<\/span><\/b><b><span data-contrast=\"auto\">basic identity hygiene\u00a0<\/span><\/b><b><span data-contrast=\"auto\">in place<\/span><\/b><span data-contrast=\"auto\">. This includes turning on\u00a0<\/span><span data-contrast=\"auto\">MFA<\/span><span data-contrast=\"auto\">\u00a0for all users, removing accounts that are no longer needed,\u00a0applying conditional access policies<\/span><span data-contrast=\"auto\">\u00a0and reviewing admin access. These steps often reduce risk quickly even before adopting a full ISPM tool.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"6\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">C<\/span><\/b><b><span data-contrast=\"auto\">hoos<\/span><\/b><b><span data-contrast=\"auto\">e<\/span><\/b><b><span data-contrast=\"auto\">\u00a0an ISPM\u00a0<\/span><\/b><b><span data-contrast=\"auto\">tool that fits<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">L<\/span><span data-contrast=\"auto\">ook\u00a0for something that integrates easily with the platforms\u00a0<\/span><span data-contrast=\"auto\">you\u00a0<\/span><span data-contrast=\"auto\">already\u00a0use\u00a0and\u00a0provides\u00a0room to grow capabilities. Simplicity\u00a0and structure\u00a0matter<\/span><span data-contrast=\"auto\">. A tool that provides clear recommendations, capabilities you can grow into,\u00a0doesn\u2019t\u00a0negatively\u00a0impact\u00a0client\u00a0workflows<\/span><span data-contrast=\"auto\">\u00a0and\u00a0is easy to deploy will have a much higher chance of success.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"6\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><span data-contrast=\"auto\">R<\/span><b><span data-contrast=\"auto\">eview<\/span><\/b><b><span data-contrast=\"auto\">\u00a0findings regularly<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-contrast=\"auto\">ISPM is not a one<\/span><span data-contrast=\"auto\">&#8211;<\/span><span data-contrast=\"auto\">time project<\/span><span data-contrast=\"auto\">,<\/span><span data-contrast=\"auto\">\u00a0and\u00a0i<\/span><span data-contrast=\"auto\">t\u2019<\/span><span data-contrast=\"auto\">s\u00a0not a\u00a0<\/span><span data-contrast=\"auto\">\u2018<\/span><span data-contrast=\"auto\">set and forget it<\/span><span data-contrast=\"auto\">\u2019<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-contrast=\"auto\">tool<\/span><span data-contrast=\"auto\">\u00a0(like the Ronco Rotisserie). It works best when someone is accountable for checking alerts, acting on recommendations,\u00a0tweaking settings<\/span><span data-contrast=\"auto\">\u00a0and tracking improvements.\u00a0This becomes part of your ongoing alignment and maintenance for your clients, which drives direct value in your service offering.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<li aria-setsize=\"-1\" data-leveltext=\"%1.\" data-font=\"\" data-listid=\"6\" data-list-defn-props=\"{&quot;335552541&quot;:0,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769242&quot;:[65533,0],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;%1.&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><b><span data-contrast=\"auto\">B<\/span><\/b><b><span data-contrast=\"auto\">uild simple<\/span><\/b><b><span data-contrast=\"auto\">\u00a0access<\/span><\/b><b><span data-contrast=\"auto\">&#8211;<\/span><\/b><b><span data-contrast=\"auto\">review<\/span><\/b><b><span data-contrast=\"auto\">\u00a0<\/span><\/b><b><span data-contrast=\"auto\">processe<\/span><\/b><b><span data-contrast=\"auto\">s<\/span><\/b><span data-contrast=\"auto\">.<\/span><span data-contrast=\"auto\">Even a quarterly review of who has access to what can make\u00a0a big difference\u00a0when guided by ISPM insights.\u00a0From experience,\u00a0project work and helpdesk tickets lead to temporary changes (like needing admin access to\u00a0setup API access) that become permanent.\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/li>\n<\/ol>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">Wh<\/span><span data-contrast=\"none\">ere\u2019s<\/span><span data-contrast=\"none\">\u00a0<\/span><span data-contrast=\"none\">the\u00a0opportunit<\/span><span data-contrast=\"none\">y<\/span><span data-contrast=\"none\">\u00a0for MSPs<\/span><span data-contrast=\"none\">?<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">ISPM creates a strong opportunity for MSPs to expand their security services in a practical and scalable way. Many SMBs\u00a0know\u00a0identity is important but do not have the time or\u00a0expertise\u00a0to manage it well.\u00a0After all, identity has become the top attack\u00a0surface\u00a0for threat actors looking to gain footholds into\u00a0cloud services.\u00a0<\/span><span data-contrast=\"auto\">MSPs can step in and\u00a0provide\u00a0that guidance\u00a0that helps limit cloud incidents.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">That opportunity shows up in a few ways:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">O<\/span><span data-contrast=\"none\">ffer<\/span><span data-contrast=\"none\">\u00a0ISPM as a managed service.\u00a0<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">This can include setting up the tool,\u00a0monitoring\u00a0it<\/span><span data-contrast=\"auto\">\u00a0and handling remediation. It is a clear value<\/span><span data-contrast=\"auto\">&#8211;<\/span><span data-contrast=\"auto\">add that ties directly to reducing risk.\u00a0Whether you bundle services, provide it as an add<\/span><span data-contrast=\"auto\">&#8211;<\/span><span data-contrast=\"auto\">on<\/span><span data-contrast=\"auto\">\u00a0or\u00a0<\/span><span data-contrast=\"auto\">use it<\/span><span data-contrast=\"auto\">\u00a0to differentiate your service offering, ISPM offers an opportunity for growth.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">D<\/span><span data-contrast=\"none\">rive advisory conversations.\u00a0<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">The insights from these tools make it easier to show customers where they are exposed and what improvements will help. This can lead to\u00a0additional\u00a0projects, such as implementing zero trust principles, conditional access policies, role<\/span><span data-contrast=\"auto\">&#8211;<\/span><span data-contrast=\"auto\">based access control<\/span><span data-contrast=\"auto\">\u00a0or improving\u00a0the\u00a0risk\u00a0posture of a client\u2019s identity service.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">S<\/span><span data-contrast=\"none\">tandardize\u00a0<\/span><span data-contrast=\"none\">security\u00a0<\/span><span data-contrast=\"none\">across clients.\u00a0<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Instead of reacting to issues case by case,\u00a0<\/span><span data-contrast=\"auto\">you<\/span><span data-contrast=\"auto\">\u00a0can bring a consistent identity security framework to every customer.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">S<\/span><span data-contrast=\"none\">upport<\/span><span data-contrast=\"none\">\u00a0AI initiatives.\u00a0<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">As end users start to create AI agents<\/span><span data-contrast=\"auto\">\u00a0and they tie identities to them, it becomes critical for MSPs to be able to track those identities, which permissions they have<\/span><span data-contrast=\"auto\">\u00a0and where they are being used.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"3\"><span data-contrast=\"none\">P<\/span><span data-contrast=\"none\">osition<\/span><span data-contrast=\"none\">\u00a0<\/span><span data-contrast=\"none\">as<\/span><span data-contrast=\"none\">\u00a0<\/span><span data-contrast=\"none\">a<\/span><span data-contrast=\"none\">\u00a0forward<\/span><span data-contrast=\"none\">&#8211;<\/span><span data-contrast=\"none\">leaning partner<\/span><span data-contrast=\"none\">.<\/span><span data-contrast=\"none\">\u00a0<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">Identity is at the center of modern security. By leading with ISPM, MSPs show they understand where security is headed and how to protect clients in\u00a0a\u00a0\u201ccloud first\u201d\u00a0world.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">Get more from your clients&#8217; Microsoft investment<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">Your clients are\u00a0<\/span><span data-contrast=\"auto\">likely\u00a0<\/span><span data-contrast=\"auto\">already\u00a0paying for Microsoft identity capabilities, but a lot of that value sits unused. Conditional Access policies stay half-<\/span><span data-contrast=\"auto\">configured,<\/span><span data-contrast=\"auto\">\u00a0MFA\u00a0<\/span><span data-contrast=\"auto\">isn&#8217;t<\/span><span data-contrast=\"auto\">\u00a0enforced everywhere and privileged roles linger long after\u00a0<\/span><span data-contrast=\"auto\">they&#8217;re<\/span><span data-contrast=\"auto\">\u00a0needed. ISPM helps you find those gaps and close them, so clients get the protection\u00a0<\/span><span data-contrast=\"auto\">they&#8217;re<\/span><span data-contrast=\"auto\">\u00a0already licensed for. For MSPs,\u00a0<\/span><span data-contrast=\"auto\">that&#8217;s<\/span><span data-contrast=\"auto\">\u00a0an easy conversation:\u00a0<\/span><span data-contrast=\"auto\">you&#8217;re<\/span><span data-contrast=\"auto\">\u00a0simply\u00a0<\/span><span data-contrast=\"auto\">helping them get full value from the Microsoft tools they already own.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">Bringing ISPM into your practice<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:160,&quot;335559739&quot;:80}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">Identity risk\u00a0isn&#8217;t\u00a0slowing down, and most SMBs\u00a0don&#8217;t\u00a0have the time or in-house skill to stay on top of it.\u00a0That&#8217;s\u00a0the\u00a0<\/span><span data-contrast=\"auto\">opening for MSPs. Whether you bundle ISPM into an existing security package or\u00a0lead with\u00a0it as a new service, it gives you a repeatable way to reduce client risk and prove the value of the work\u00a0you&#8217;re\u00a0doing.<\/span><span data-ccp-props=\"{&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/p>\n<h2 aria-level=\"2\"><span data-contrast=\"none\">Want to go deeper on ISPM and identity risk?\u00a0\u00a0<\/span><span data-ccp-props=\"{&quot;134245418&quot;:true,&quot;134245529&quot;:true,&quot;335559738&quot;:240,&quot;335559739&quot;:240}\">\u00a0<\/span><\/h2>\n<p><span data-contrast=\"auto\">Identity is one of those topics where it helps to hear how other MSPs are actually handling it.\u00a0The\u00a0CyberMSP\u00a0Community is a space to swap approaches, ask questions and get answers from peers and security experts working through the same problems you are.<\/span><span data-contrast=\"auto\">\u00a0<\/span><a href=\"https:\/\/info.sherweb.com\/cybermsp-community\/\"><span data-contrast=\"none\">Join the community to learn more<\/span><\/a><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Identity is now the\u00a0front door to almost every client environment\u00a0you manage. Attackers know it","protected":false},"author":188,"featured_media":25987,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[753],"tags":[919,1031,1208],"class_list":["post-25986","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-security","tag-cybersecurity","tag-identity-and-access-management","tag-ispm"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v28.0 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What is ISPM? A guide to identity security for MSPs | Sherweb<\/title>\n<meta name=\"description\" content=\"Identity security posture management (ISPM) helps MSPs catch risky access before attackers do. See how it works and how to build it into your services.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What is ISPM? A guide to identity security for MSPs | Sherweb\" \/>\n<meta property=\"og:description\" content=\"Identity security posture management (ISPM) helps MSPs catch risky access before attackers do. See how it works and how to build it into your services.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/\" \/>\n<meta property=\"og:site_name\" content=\"Sherweb\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Sherweb\" \/>\n<meta property=\"article:published_time\" content=\"2026-07-16T15:28:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.sherweb.com\/blog\/wp-content\/uploads\/Hero_1200x480-14.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1800\" \/>\n\t<meta property=\"og:image:height\" content=\"720\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Roddy Bergeron\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@SherWeb\" \/>\n<meta name=\"twitter:site\" content=\"@SherWeb\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Roddy Bergeron\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/\"},\"author\":{\"name\":\"Roddy Bergeron\",\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/#\\\/schema\\\/person\\\/f6a0c8e1d541dbeb57fd3e025b325795\"},\"headline\":\"What is ISPM and why does it matter for MSPs?\",\"datePublished\":\"2026-07-16T15:28:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/\"},\"wordCount\":1543,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#primaryimage\"},\"thumbnailUrl\":\"\\\/blog\\\/wp-content\\\/uploads\\\/Hero_1200x480-14.jpg\",\"keywords\":[\"Cybersecurity\",\"Identity and Access Management\",\"ISPM\"],\"articleSection\":[\"Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/\",\"url\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/\",\"name\":\"What is ISPM? A guide to identity security for MSPs | Sherweb\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#primaryimage\"},\"thumbnailUrl\":\"\\\/blog\\\/wp-content\\\/uploads\\\/Hero_1200x480-14.jpg\",\"datePublished\":\"2026-07-16T15:28:36+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/#\\\/schema\\\/person\\\/f6a0c8e1d541dbeb57fd3e025b325795\"},\"description\":\"Identity security posture management (ISPM) helps MSPs catch risky access before attackers do. See how it works and how to build it into your services.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#primaryimage\",\"url\":\"\\\/blog\\\/wp-content\\\/uploads\\\/Hero_1200x480-14.jpg\",\"contentUrl\":\"\\\/blog\\\/wp-content\\\/uploads\\\/Hero_1200x480-14.jpg\",\"width\":1800,\"height\":720,\"caption\":\"What is ISPM? A guide to identity security for MSPs\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/security\\\/ispm-identity-security-msps\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security\",\"item\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/category\\\/security\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"What is ISPM and why does it matter for MSPs?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/\",\"name\":\"Sherweb\",\"description\":\"More than a cloud marketplace\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/#\\\/schema\\\/person\\\/f6a0c8e1d541dbeb57fd3e025b325795\",\"name\":\"Roddy Bergeron\",\"description\":\"Roddy Bergeron's career has taken various paths including government auditing, nonprofit work, public\\\/private partnerships with the State of Louisiana, helping build an MSP by building their managed service, managed security, vCISO and compliance programs, and now as the Cybersecurity Technical Fellow with Sherweb. Roddy has obtained many certifications over the years including his MCSE, CCNA:Security, CEH, CCSP, CISSP and CSAP. Our MSP community is extremely important to Roddy and he loves giving back to the community that has helped him out so much over the years. Roddy hopes to continue to help other MSPs succeed and raise the cybersecurity tide for our industry.\",\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/in\\\/roddy-bergeron-cissp-ccsp-csap-33432573\\\/\"],\"url\":\"https:\\\/\\\/www.sherweb.com\\\/blog\\\/author\\\/roddy-bergeron\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What is ISPM? A guide to identity security for MSPs | Sherweb","description":"Identity security posture management (ISPM) helps MSPs catch risky access before attackers do. See how it works and how to build it into your services.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/","og_locale":"en_US","og_type":"article","og_title":"What is ISPM? A guide to identity security for MSPs | Sherweb","og_description":"Identity security posture management (ISPM) helps MSPs catch risky access before attackers do. See how it works and how to build it into your services.","og_url":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/","og_site_name":"Sherweb","article_publisher":"https:\/\/www.facebook.com\/Sherweb","article_published_time":"2026-07-16T15:28:36+00:00","og_image":[{"width":1800,"height":720,"url":"https:\/\/www.sherweb.com\/blog\/wp-content\/uploads\/Hero_1200x480-14.jpg","type":"image\/jpeg"}],"author":"Roddy Bergeron","twitter_card":"summary_large_image","twitter_creator":"@SherWeb","twitter_site":"@SherWeb","twitter_misc":{"Written by":"Roddy Bergeron","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#article","isPartOf":{"@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/"},"author":{"name":"Roddy Bergeron","@id":"https:\/\/www.sherweb.com\/blog\/#\/schema\/person\/f6a0c8e1d541dbeb57fd3e025b325795"},"headline":"What is ISPM and why does it matter for MSPs?","datePublished":"2026-07-16T15:28:36+00:00","mainEntityOfPage":{"@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/"},"wordCount":1543,"commentCount":0,"image":{"@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#primaryimage"},"thumbnailUrl":"\/blog\/wp-content\/uploads\/Hero_1200x480-14.jpg","keywords":["Cybersecurity","Identity and Access Management","ISPM"],"articleSection":["Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/","url":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/","name":"What is ISPM? A guide to identity security for MSPs | Sherweb","isPartOf":{"@id":"https:\/\/www.sherweb.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#primaryimage"},"image":{"@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#primaryimage"},"thumbnailUrl":"\/blog\/wp-content\/uploads\/Hero_1200x480-14.jpg","datePublished":"2026-07-16T15:28:36+00:00","author":{"@id":"https:\/\/www.sherweb.com\/blog\/#\/schema\/person\/f6a0c8e1d541dbeb57fd3e025b325795"},"description":"Identity security posture management (ISPM) helps MSPs catch risky access before attackers do. See how it works and how to build it into your services.","breadcrumb":{"@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#primaryimage","url":"\/blog\/wp-content\/uploads\/Hero_1200x480-14.jpg","contentUrl":"\/blog\/wp-content\/uploads\/Hero_1200x480-14.jpg","width":1800,"height":720,"caption":"What is ISPM? A guide to identity security for MSPs"},{"@type":"BreadcrumbList","@id":"https:\/\/www.sherweb.com\/blog\/security\/ispm-identity-security-msps\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.sherweb.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Security","item":"https:\/\/www.sherweb.com\/blog\/category\/security\/"},{"@type":"ListItem","position":3,"name":"What is ISPM and why does it matter for MSPs?"}]},{"@type":"WebSite","@id":"https:\/\/www.sherweb.com\/blog\/#website","url":"https:\/\/www.sherweb.com\/blog\/","name":"Sherweb","description":"More than a cloud marketplace","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.sherweb.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.sherweb.com\/blog\/#\/schema\/person\/f6a0c8e1d541dbeb57fd3e025b325795","name":"Roddy Bergeron","description":"Roddy Bergeron's career has taken various paths including government auditing, nonprofit work, public\/private partnerships with the State of Louisiana, helping build an MSP by building their managed service, managed security, vCISO and compliance programs, and now as the Cybersecurity Technical Fellow with Sherweb. Roddy has obtained many certifications over the years including his MCSE, CCNA:Security, CEH, CCSP, CISSP and CSAP. Our MSP community is extremely important to Roddy and he loves giving back to the community that has helped him out so much over the years. Roddy hopes to continue to help other MSPs succeed and raise the cybersecurity tide for our industry.","sameAs":["https:\/\/www.linkedin.com\/in\/roddy-bergeron-cissp-ccsp-csap-33432573\/"],"url":"https:\/\/www.sherweb.com\/blog\/author\/roddy-bergeron\/"}]}},"tag_names":["Cybersecurity","Identity and Access Management","ISPM"],"_links":{"self":[{"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/posts\/25986","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/users\/188"}],"replies":[{"embeddable":true,"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/comments?post=25986"}],"version-history":[{"count":1,"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/posts\/25986\/revisions"}],"predecessor-version":[{"id":25988,"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/posts\/25986\/revisions\/25988"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/media\/25987"}],"wp:attachment":[{"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/media?parent=25986"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/categories?post=25986"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.sherweb.com\/blog\/wp-json\/wp\/v2\/tags?post=25986"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}