The MSP Security Playbook | A Podcast from Heimdal

The Theory of One and Why Tool Sprawl Kills Your Profit - with Jason Whitehurst

Welcome back to the MSP Security Playbook, the show where modern MSPs come to sharpen strategy, streamline operations, and secure sustainable growth. Brought to you by Heimdal Security, helping MSPs win with unified, AI-powered cybersecurity. In this season-finale episode, host Jacob Hazelbaker is joined by Jason Whitehurst, Founder of FutureSafe, the exclusive MSP provider of Heimdal Security in the United States and an MSSP purpose-built to operate behind the scenes for MSPs. FutureSafe has earned a reputation as the MSSP for MSPs, delivering complete cybersecurity stacks, SOC oversight, and incident response without competing for the end customer. In this conversation, Jason shares hard-won lessons from years of ransomware response, vendor vetting, and helping MSPs scale security profitably. At the core of Jason’s philosophy is the “Theory of One”: One platform. One SOC. One provider. One incident response model. One responsible party. Jason explains why tool sprawl, vendor sprawl, and process sprawl are not just inefficient, they actively slow down incident response, reduce accountability, and destroy margins. He also dives into why MSPs struggle to make cybersecurity profitable on their own, and how partnering with an MSSP can unlock scale without sacrificing control or branding. Elsewhere, Heimdal Cybersecurity Advisor Adam Pilton delivers a sobering Threat Brief based on the World Economic Forum’s 2026 Global Cybersecurity Outlook. Adam exposes the growing cybersecurity governance gap at the board level, where compliance theatre replaces real accountability.  This episode is a powerful close to Season One, focused on simplification, accountability, partnership, and scaling security the right way. Chapter Markers: (02:00) – Threat Briefing: Cybersecurity governance gaps at the board level (06:00) – How the Heimdal–FutureSafe partnership came to life (11:00) – Hiring people smarter than you (and why it matters) (13:30) – Vendor vetting: usability, expertise, and accountability (17:00) – How MSSPs unlock economies of scale (20:00) – Common MSP mistakes during incident response (22:00) – Jason’s 2026 prediction for MSPs (23:00) – MSP Hot Seat: One move MSPs can make tomorrow to improve security (25:00) – Jacob’s Play-by-Play: Key takeaways Useful Links Connect with Jason Whitehurst on LinkedIn [https://www.linkedin.com/in/whitehurstjason/] To learn more about FutureSafe, visit their website [https://futuresafe.com/] Follow Jacob for more cybersecurity insights on LinkedIn [https://www.linkedin.com/in/jhaz/] For more from Adam, connect via LinkedIn [https://www.linkedin.com/in/adampilton/] Explore Heimdal’s platform at heimdalsecurity.com [https://heimdalsecurity.com/]

What Happens When You Pay Someone $25 to Send You $60K - with Harrison Baron

Welcome back to the MSP Security Playbook, the show where modern MSPs come to sharpen strategy, streamline operations, and secure sustainable growth. Brought to you by Heimdal Security, helping MSPs win with unified, AI-powered cybersecurity. In this episode, host Jacob Hazelbaker is joined by Harrison Baron, CEO of Growth Generators, host of the Brutally Honest podcast, and one of the most outspoken voices in MSP marketing today. Harrison has helped hundreds of MSPs and IT service providers grow by doing one thing most avoid: putting themselves out there and talking about the problems they actually solve. Harrison argues that MSPs don’t struggle because there’s a lack of demand, they struggle because they’re invisible, generic, and afraid to show their work. This conversation is a practical, no-nonsense breakdown of how MSPs can stop blending in and start building authority that converts into real revenue. Elsewhere Adam Pilton returns with a sobering breakdown of a real-world credential-theft campaign targeting enterprise file-sharing platforms like ShareFile. Using stolen credentials and environments This episode is a masterclass in practical MSP marketing, focused on action, visibility, and clarity, not buzzwords or empty tactics. Chapter Markers: (01:30) – Threat Briefing: Stolen credentials + file-sharing platforms, why MFA is non-negotiable (09:05) – Why marketing feels unnatural for MSPs (and why that’s the point) (14:05) – Authority vs. awareness: why visibility only works when it’s targeted (19:10) – Fixing website content depth: why “less is more” hurts MSPs (22:45) – Referral programs: why most MSP incentives are too small to work (28:45) – 2026 marketing rule: “Just do something” + test what works for your MSP (32:00) – MSP Hot Seat: generating inbound leads without relying on referrals (34:10) – Jacob’s Play-by-Play: key takeaways (authority, trust, consistency, playing to strengths) Useful Links Connect with Harrison Baron on LinkedIn [https://www.linkedin.com/in/harrisontbaron] To learn more about Growth Generators, visit their website [https://www.google.com/search?q=growth+generators&sca_esv=b04cb06c25fa1fe2&rlz=1C5OZZY_enGB1162GB1163&ei=iSNhaem2A9G2hbIP7faM6A0&ved=0ahUKEwipn-jD5_6RAxVRW0EAHW07A90Q4dUDCBE&uact=5&oq=growth+generators&gs_lp=Egxnd3Mtd2l6LXNlcnAiEWdyb3d0aCBnZW5lcmF0b3JzMgUQABiABDIFEAAYgAQyBhAAGBYYHjIGEAAYFhgeMgsQABiABBiGAxiKBTILEAAYgAQYhgMYigUyBRAAGO8FMggQABiABBiiBDIIEAAYgAQYogRIhxtQ6wRYthpwA3gAkAEAmAGFAaAB-AuqAQQxMS41uAEDyAEA-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&sclient=gws-wiz-serp#:~:text=Home%20%7C%20Growth%20Generators,growth-generators.com] Follow Jacob for more cybersecurity insights on LinkedIn [https://www.linkedin.com/in/jhaz/] For more from Adam, connect via LinkedIn [https://www.linkedin.com/in/adampilton/] Explore Heimdal’s platform at heimdalsecurity.com [https://heimdalsecurity.com/]

Should MSP Owners Stop Selling For a Full Year? - with Ian Luckett

Welcome back to the MSP Security Playbook, brought to you by Heimdal Security, your partner in unified, AI-powered cybersecurity designed to help MSPs win. In this episode, host Jacob Hazelbaker sits down with Ian Luckett, MSP growth expert and founder of the MSP Growth Hub, where he helps service providers scale profitably, build strong leadership teams, and step out of the day-to-day firefight. Ian brings decades of leadership and business transformation experience, and he believes one thing firmly: Technology doesn’t grow an MSP; leadership does. Together, Jacob and Ian unpack how MSPs can break through plateaus, overcome bottlenecks, and build organisations that scale through clear direction, empowered teams, and consistent execution. Ian walks through his Scale of Confidence Model, revealing the three foundational pillars every MSP must master. Elsewhere, on this week's threat brief, Adam Pilton exposes the terrifying rise of AI-enhanced virtual kidnapping scams, a new wave of psychological attacks using manipulated images, emotional shock, and social engineering to extort victims. He explains how these scams work, why they’re spreading fast, and how MSPs can use this threat to open crucial conversations about digital privacy and human-layer security with clients. This episode is packed with practical leadership tools, people-first strategies, and mindset shifts to help MSP owners scale smarter, build trust, and lead their teams with clarity. Chapter Markers: (02:00) – Threat Briefing: AI-enabled virtual kidnapping scams (06:00) – MSP owners and the leadership gap: Why it matters (10:00) – AI vs. Process: Why AI can’t fix a broken MSP (16:00) – Delegation as a confidence-building tool (21:30) – The Scale of Confidence Model explained (26:00) – MSP Hot Seat: The leadership skill that defines the next generation (28:00) – Jacob’s Play-by-Play: Key takeaways Useful Links: Connect with Ian Luckett on LinkedIn [https://uk.linkedin.com/in/ianluckett] To learn more about The MSP Growth Hub, visit their website [https://themspgrowthhub.com/] Follow Jacob for more cybersecurity insights on LinkedIn [https://www.linkedin.com/in/jhaz/] For more from Adam, connect via LinkedIn [https://www.linkedin.com/in/adampilton/] Explore Heimdal’s platform at heimdalsecurity.com [https://heimdalsecurity.com/]

How to Keep Your Team from Burning Out When Every Call is Someone in Pain - with Dean Trempelas

Welcome back to the MSP Security Playbook, brought to you by Heimdal Security, the unified, AI-powered cybersecurity platform helping today’s MSPs scale smarter, operate efficiently, and lead with security at the center. In this episode, host Jacob Hazelbaker sits down with Dean Trempelas, MSP veteran, educator, and founder of Empath, a learning and professional development platform built for service providers who want stronger people, stronger teams, and stronger outcomes. Dean’s story spans the entire MSP journey: from a small break-fix shop to leading a 300-person division inside a private-equity-backed MSP. And the lesson he brings? Success in the MSP world isn’t about having the best tools; it’s about empowering people, building clarity, and creating environments where teams can consistently deliver great outcomes. This episode is an honest, energising look at the human side of the MSP business.  Elsewhere, Adam Pilton returns with a warning that hits close to home: insider threats are accelerating, from employees leaking internal dashboards at a major cybersecurity company to ransomware negotiators turning into attackers themselves. Adam breaks down why insider risk is rising, how it bypasses traditional defenses, and what MSPs must do to protect against threats from within. If you enjoy this episode, follow the MSP Security Playbook on your favorite podcast platform, leave a review, and share it with another MSP leader looking to build stronger teams and a stronger business. Chapter Markers: (02:00) – Threat Briefing: Insider threats inside major security companies (07:00) – Why process maturity beats heroics (12:00) – Why MSPs take themselves too seriously and how levity builds culture (18:00) – Consistency for employees: the forgotten key to retention (24:00) – What consistency truly means (and what it doesn’t) (26:00) – Spicy Monday: “Clarity beats capability” (28:00) – MSP Hot Seat: The one lesson every leader should learn (30:00) – Jacob’s Play-By-Play: Key takeaways Useful Links: Connect with Dean Trempelas on LinkedIn [https://www.linkedin.com/in/drzoidberg] To learn more about Empath, visit their website [https://empathmsp.com/] Follow Jacob for more cybersecurity insights on LinkedIn [https://www.linkedin.com/in/jhaz/] For more from Adam, connect via LinkedIn [https://www.linkedin.com/in/adampilton/] Explore Heimdal’s platform at heimdalsecurity.com [https://heimdalsecurity.com/]

What to Fix Before Your MSP Exit - with Sam Levy

Welcome back to the MSP Security Playbook, brought to you by Heimdal Security, your partner in unified, AI-powered cybersecurity built for today’s modern MSP.  In this episode, host Jacob Hazelbaker sits down with Sam Levy, Partner at Drake Star, a global investment bank that has advised on more than 500 technology and tech-enabled service transactions. Sam leads their tech-enabled services practice and has worked closely with MSP founders navigating growth investment, private equity, and mergers & acquisitions. Together, they unpack one of the most misunderstood yet increasingly important topics in the MSP world: how to prepare your business for acquisition, whether that’s a year from now or a decade down the road. Sam breaks down what’s driving the current surge in MSP consolidation, why private equity is so interested in the space and how founders can emotionally prepare for selling the business they built If you're thinking about investment, future exit planning, or simply want to run a more resilient and valuable MSP, this conversation is packed with insights you can apply immediately. Elsewhere Adam Pilton brings us this week's Threat Brief which focuses on a stunning update on AI-enabled, self-rewriting malware now observed in active campaigns. If you enjoy the show, make sure to follow MSP Security Playbook on your favourite podcast platform, leave a review, and share it with another MSP leader who’s thinking about the future of their business. Chapter Markers: (02:00) – Threat Briefing: AI-enabled malware that rewrites itself in real time (06:30) – Why MSP acquisitions are accelerating: consolidation, PE appetite & industry maturity (13:05) – The danger of negotiating too early with a single buyer (19:30) – The emotional side of selling: finding your number and planning your “after” life (23:50) – MSP Hot Seat: One metric every MSP should start tracking today (25:20) – Jacob’s Play-by-Play: Key takeaways from the conversation Useful Links: Connect with Sam Levy on LinkedIn [https://www.linkedin.com/in/samlevysam] To learn more about Drake Star, visit their website [https://www.drakestar.com/] Follow Jacob for more cybersecurity insights on LinkedIn [https://www.linkedin.com/in/jhaz/] For more from Adam, connect via LinkedIn [https://www.linkedin.com/in/adampilton/] Explore Heimdal’s platform at heimdalsecurity.com [https://heimdalsecurity.com/]