‘Compliance and regulation will be one of the three key challenges for MSPs in 2025.’ (Canalys, 2025)
With the recent launch of two major compliance frameworks in EMEA, managed service providers (MSPs) in the region have an excellent opportunity to enhance their cybersecurity offerings in 2025. Now is the time to educate yourself on what is required and position your MSP as a trusted adviser to your clients.
In this blog, Pax8 security expert Mostyn Thomas shares an overview of the key cybersecurity themes for this year and explains how Pax8 can support you in navigating the additional compliance framework challenges. Having owned an MSP and with extensive experience in cybersecurity, Mostyn is a respected and trusted voice in the channel.
What you need to know about new compliance frameworks
The EU’s Network and Information Security (NIS2) Directive and the Digital Operational Resilience Act (DORA) are the two new compliance frameworks you need to develop a plan for in 2025. The Cyber Resilience Act is another directive you need to be aware of. It’s not due to apply until 2027, but now is the critical time for education and understanding its implications.
The rollout of these directives, similarly to GDPR rules, will take time, with individual governments still to release their guidelines and businesses not yet facing sanctions for non-compliance. However, you need to start building your knowledge now, particularly if you serve clients in the financial sector, as DORA is especially relevant to them. Read our LinkedIn article to learn more about the practical steps you can take to prepare for DORA.
Research shows a significant knowledge gap in NIS2 compliance, so you have a real opportunity to demonstrate leadership and confidence in aligning with these frameworks. Now is the time to plan, be proactive and start conversations with your clients about the impact of these directives and the steps they need to take to be compliant.
Pax8 is committed to helping you comply with these directives and supporting you in having relevant and productive conversations with your clients around frameworks, risk and compliance.
How to defend against AI-enabled cyber threats
Cyber threats in 2025 will continue to evolve with AI, and we predict a ramping up of the scale and impact of existing threats this year, with ransomware, credential compromise and social engineering bigger than ever. AI enables bad actors to use existing threat vectors at a greater scale. It is, therefore, important for you to focus on vendors and security solutions that effectively use AI to defend against AI-enabled threats. The Pax8 Marketplace is a great place to start exploring the best solutions for your clients’ needs.
How Pax8 supports you
Pax8 Academy provides a wealth of resources, training and guidance to help you stay compliant and enhance your security posture. With NIS2 and DORA requiring government-specific considerations, Pax8 is building a bank of information that can signpost you to the relevant details for your region. This resource will grow as more legislation becomes available.
Pax8 also offers two security programmes tailored to the needs of MSPs:
- Pax8 Security programme – focused on helping you strengthen your business acumen and become more knowledgeable on vendor solutions. The business track delivers business and category-level education and enablement through virtual instructor-led training sessions.
- Security 360 – designed to support you on your cybersecurity journey through consulting sessions tailored to your current needs. From identifying gaps in your offerings to assisting with vulnerability assessments, this programme has a particular focus on go-to-market strategies to help you effectively sell cybersecurity solutions to your clients. Contact your Pax8 account manager for more details.
Both programmes complement the Pax8 Cybersecurity Masterclasses, offering a holistic approach to growing your security stack through education and sales enablement. We recognise that our partners have different needs, so Pax8 can now offer sales support in various options tailored to each partner’s challenges.
Must-attend Pax8 cybersecurity events
Pax8 has a wide range of cybersecurity events planned for partners this year. We have refreshed the ever-popular Cybersecurity Masterclass series, updating the content to ensure we meet our partners’ needs and address emerging cybersecurity challenges. We now have three masterclass tracks:
- Cybersecurity Masterclass: The original session that offers a broad overview of how to enhance your security posture.
- Sales Masterclass: This class launched last year and is tailored more to sales roles. It includes tips and strategies for identifying cybersecurity opportunities.
- Data & AI Masterclass: A brand-new session run by Andy Readman, Data & AI Director in EMEA for Pax8 Academy, which will also include a cybersecurity angle.
The Cybersecurity Masterclasses will be held throughout the year in countries across EMEA. In addition to revisiting the UK, Germany and the Netherlands, we will host events in Scandinavia, the Baltics and Belgium. Keep an eye on our events page for more details.
Together, these three masterclasses offer you a well-rounded curriculum to boost your knowledge and sales growth. The Pax8 Academy also has more new content in the works this year to address compliance, frameworks and risk.
Pax8 will also be represented at multiple industry events, including InfoSec, IT Nation and UK Security Week. Given the focus on the NIS2 and DORA, we are planning to attend more events focused on risk and standards throughout 2025.
Another event not to be missed is Beyond, our biggest partner event, taking place across two continents:
- Beyond Flagship: 8-10 June | Denver, US
- Beyond EMEA: 5-7 October | Amsterdam, Netherlands
Cybersecurity will feature prominently on the Beyond agendas, with sessions covering the topics that really matter to partners, and with partner stories front and centre. We can guarantee it will be different, relevant and community focused.
Join the Pax8 cybersecurity community
The Pax8 partner community is thriving in the cybersecurity space, and any partner who attends a Cybersecurity Masterclass joins a Slack channel where partners share successes, challenges and best practices. We have seen many stories of partners transforming their businesses by growing their security offerings, signalling big leaps in how partners think about security. It is great to see so many partners achieving certifications to add credibility to their offerings. In the Netherlands, we have partners leading the way with NIS2 advice, working with the government and getting ahead as trusted advisers to their clients.
Conclusion
In summary, the cybersecurity outlook in 2025 presents both challenges and opportunities for MSPs in EMEA. With the introduction of new compliance frameworks like NIS2 and DORA, it is crucial for you to be proactive. Pax8 is committed to supporting its partners through resources, tailored security programmes and engaging events. With these tools, you can enhance your security offerings and position yourself as a trusted adviser to your clients.
