Focus Technology
Success Stories
Contact Us
Team ViewerRemote Support

Building Security from the Inside Out with N-Able

focus technology the digital roast podcast

Cyber threats are growing fast — but so are the defences. In this episode of The Digital Roast Podcast, Focus CEO Brendon McDermott sits down with Dave MacKinnon (Chief Security Officer) and Will Ledesma (Director of MDR Cybersecurity Operations) from N-Able, one of Focus’s trusted global partners. Together they share an insider look at how modern cyberattacks work, why small businesses are prime targets, and what real resilience looks like in 2025.

Introduction

Cybersecurity isn’t just a technology issue — it’s a business one. According to N-Able’s latest NAble Annual Threat Report detected cyber threats surged from 50,000 in 2024 to 13.3 million in 2025 — a 273× increase.

n-able 2025 threat report

For Dave MacKinnon, that number tells a clear story:

“Small businesses aren’t a new target — they’ve always been one. The difference now is speed. Attackers move fast because small businesses pay.”

When “Small” Doesn’t Mean Safe

Small and medium-sized businesses (SMBs) are increasingly on the radar of cybercriminals. As Dave explains, it’s not about size — it’s about value:

“If you’re in business, you have something of value. It might be data, it might be cashflow, but you have something attackers want.”

david mackinnon - n-able

SMBs often lack the dedicated resources of enterprise companies, making them easier targets. The key, says Dave, is building resilience — not just protection:

“Don’t treat cybersecurity as an add-on. Treat it like insurance or health and safety — a risk you plan for.”

What MDR Really Means

The term MDR — Managed Detection and Response — is becoming a must-have layer for modern protection.

Will Ledesma breaks it down:

“MDR adds an extra defence layer to any business. We do the heavy lifting — detecting, responding and protecting in real time.”

Unlike traditional antivirus or even EDR (endpoint detection and response), MDR combines technology + human expertise, delivered by a 24/7 Security Operations Center (SOC) that monitors and reacts to threats globally.

Will Ledesma - n-able

“Attackers are now breaking into environments and escalating privileges in just eight minutes,” Will notes. “AI helps us match that speed — but it’s still humans making the decisions that matter.”

AI: Friend and Foe

AI is transforming both sides of cybersecurity. Threat actors use AI to craft near-perfect phishing emails and fake login pages, while defenders use it to detect and respond faster.

“AI is a faster determination towards conviction,” Will explains. “It helps analysts see through the fog — like a soldier with a heads-up display.”

The takeaway? Speed and context are everything. Automation assists, but human oversight remains essential to verify and contain attacks.

The Human Element: Trust but Verify

While AI accelerates defence, social engineering still exploits human trust. Dave reminds us:

“You can trust people — but trust and verify. If something feels off, pick up the phone and confirm it. Sometimes the simplest step saves you the biggest headache.”

He describes Focus and N-Able’s approach as the “four eyes” concept — two sets of eyes on every decision to reduce risk and build resilience

What Businesses Should Expect from Their IT Partner

Every business — no matter how small — should be able to ask its IT provider:

  • What are my biggest risks?
  • How are you protecting me from them?
  • What does recovery look like if something goes wrong?

“Your IT provider should translate the technical into business language,” Dave says. “They should help you see the risk and the resilience plan side by side.”

Key Takeaways

  • SMBs are prime targets — not because they’re small, but because they’re accessible and they pay.
  • Attacks move fast: in some cases, criminals reach core systems in under eight minutes.
  • AI cuts both ways: it supercharges defence but also powers smarter phishing and social engineering.
  • Knowledge is power: every cyber conversation builds resilience.
  • Partnerships matter: the right MSP and MDR team create layers of defence you can trust.

Final Thoughts

Cybersecurity isn’t about fear — it’s about resilience.

“No business owner ever says, ‘I hope my business goes out of business tomorrow,’” Dave adds. “They want to stay open. That’s why we build resilience — so they can.”

For SMBs, that means layered protection, clear processes, and trusted partners who help translate the technical into the practical.

References:

Cyber Security – Focus Technology

Threat Report 2025 – N-able

State of the SOC Report – 2025 – N-able

Welcome to the National Cyber Security Centre

Own Your Online – Own Your Online

The Digital Roast Podcast

Needing help on your business’ cyber needs?

Get in touch with us— we provide Cyber Security training, assessment and products to help any businesses across Invercargill, Gore, Dunedin, Timaru, Christchurch, Queenstown, and Wanaka.