<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1152938984785537&amp;ev=PageView&amp;noscript=1">

    What are you looking for?

      Proof in Practice

      Proof in Practice

      on June 25, 2026
      Back
      Proof in Practice

      In This Issue

      Proof in Practice

      The partners who grow aren't chasing more tools. They're focused on getting the right information, from the right systems, to make smarter decisions for every client: assess the real risks, prioritize what really matters, remediate the gaps, and prove compliance. What makes that possible is a platform that brings it all together with one source of truth and one view of every client. Cytracom's 2026 story has been building that.

      This quarter, the evidence Cytracom's platform accumulates extends beyond recording information and starts producing value. Insurance Manager maps Telivy and Tentacle evidence directly to cyber insurance questionnaires, turning proof that used to sit in a folder into leverage at renewal and a new billable line. ControlOne turns a client's security posture into the condition for reaching Microsoft 365 - it doesn't just observe access, it decides it. And Telivy's prioritization sharpens further, ranking remediation based on what attackers are actively exploiting, not on severity alone.

      None of this works as five separate products. It works because a finding in one place becomes evidence, an access decision, or an insurance answer somewhere else: on a shared view of the client. A single operating surface for that shared context is next on the roadmap.

      Assess. Prioritize. Remediate. Prove.

      Here's what we’ve delivered.

      Telivy: Prioritize by What's Actually Exploitable

      Last month Telivy introduced the Top Actions table. Now, it tells you the "why" with real-world exploitability behind the ranking, not severity scores alone.

      What We Delivered

      • Exploitability-driven prioritization. Telivy now pulls EPSS data, the KEV catalog, and ExploitDB lookups, so findings are ranked by what attackers are actually using, not raw severity. The Top Actions table sits on top of that signal.
      • Expanded browser and identity discovery. Browser analysis now spans Chrome (137+), Firefox, and Safari, plus an installed-extensions inventory across managed endpoints. Covers the credential and extension risks software-only scanners miss.
      • Multi-user assessment assignment (GA). Invite multiple teammates to a single assessment (built for larger MSP teams co-managing clients).
      • Smarter alerting. The same CVE finding on the same host no longer fires repeat alerts. Acknowledge or resolve a finding directly so addressed items stop refilling the inbox.
      • Agent Auto-Update (GA). Agents on Windows and macOS check for and apply updates hourly with no manual maintenance. Release Channels (Stable, Beta, Alpha) remain in Early Access.

      The Bottom Line

      "What do we fix first?" is the question every client review turns on. EPSS, KEV, and ExploitDB give you a defensible answer: we prioritized the vulnerabilities attackers are exploiting right now. Multi-user assignment lets bigger teams work a client together, and alert dedupe means your inbox actually signals something when it pings.

      Tentacle: Insurance Manager Is Available Now

      This is the section to act on. Cyber insurance risk management is live in Unity Platform.

      What We Delivered

      • Insurance Manager (Limited Release). Ingests a client's insurance questionnaire, maps to the Telivy and Tentacle controls that already carry evidence, and tracks coverage gaps against carrier requirements - continuously, not just at renewal. Most MSPs answer these questionnaires by hand today, often inaccurately, with no monitoring of whether answers stay true between renewals. Insurance Manager changes that. To get it: log into Unity Platform and request access.
      • Evidence Locker (GA). Continuous control evidence with versioning is now generally available. Every Telivy scan becomes a timestamped, source-attributed snapshot with a 90-day compliance timeline establishing one source of truth instead of a pre-audit scramble.
      • WISP generation. Produce a Written Information Security Program document alongside HIPAA reporting, straight from the compliance program you already maintain.
      • Executive report severity breakdown. Reports now open with a High/Medium/Low count on page one so you can walk a client through posture at the start of a review.

      The Bottom Line

      Insurance Manager opens a billable conversation with every client carrying a cyber policy. Pair it with the Evidence Locker and the path from a Telivy scan to carrier-ready proof is a straight line. If cyber insurance or compliance-as-a-service is a service line you're building, request Insurance Manager access in Unity Platform and talk to your partner manager about wiring it into existing client programs.

      ControlOne: Zero Trust That Reaches Microsoft 365

      If you looked at ControlOne three months ago, it's not the same product. ControlOne now extends enforcement past the network edge and into the cloud apps your clients actually work in.

      What We Delivered

      • Microsoft 365 Conditional Access integration. Require the ControlOne agent as a condition in M365 Conditional Access policies; users reach Microsoft 365 apps only when they're protected by ControlOne. Least-privilege access now follows the user to the cloud, not just across the network.
      • Configurable session controls. Set session idle and absolute timeouts directly in ControlOne, mapping cleanly to PCI, HIPAA, and CMMC requirements. No bolt-on tool, no separate procurement.
      • No traffic leaks during a tunnel outage. IPsec tunnels now hold traffic safely instead of leaking it out the client's public IP when a tunnel drops, then recover automatically. A real security gap closed at exactly the moment a network is most fragile.
      • Hardened, faster DNS. Protection against cache-poisoning and spoofing with improved resolution speed with security patches applied automatically, no partner action required.

      Portal and Reliability

      • Network map, zones, and associations now reflect reality; zones stay visible through changes.
      • Correcting one field no longer clears valid NAT rules and subnets. VLAN zones display correctly.
      • The portal no longer snaps you to a different tenant mid-session.

      The Bottom Line

      The M365 Conditional Access integration turns 'I manage your firewall' into 'I manage your client's security posture all the way into the apps that matter most,' all inside one platform. Configurable session controls transform complex compliance work into a configuration step. The IPsec and DNS improvements protect clients at the moments they're most exposed.

      UCaaS: The Integrations Bet Pays Off

      UCaaS is back in this issue, and the integrations framework we've been building toward is now producing real, generally available connections to the tools your clients run.

      What We Delivered

      • Autotask v2 (GA). Now generally available in the Desktop Marketplace, built on a new integrations framework. Faster load times, dedicated Accounts/Contacts/Tickets navigation, and incoming call pop-ups that surface caller details and open tickets inline. The strategic point is the framework itself: integrations are now a platform capability, which is why the next ones ship faster. Already using Autotask, or tried a previous version? We're actively building this out and want to hear what's working and what's not. Email swise@cytracom.com.
      • Automated ticket work. Missed calls automatically create PSA tickets with caller name, number, timestamp, and direction. Call log notes with detailed metadata generated automatically. Configurable PSA ticket creation settings are in Early Access.
      • X30 standardization. The security-hardened X30 becomes the standard business phone across every deployment size, with up to four daisy-chained sidecars and 180 programmable keys. Less SKU complexity, less training overhead, one support path.
      • Caller identity that stays correct. Caller ID is preserved through hold, park, and transfer; outbound caller ID names stay consistent with PBX portal config; the shared SMS inbox shows which internal user responded. The 'From' dropdown flags internal-only lines to prevent failed sends.
      • Mobile (Early Access). Redesigned active call screen with modern controls, network error notifications, lock-screen call answering on Android, and prioritized vehicle/headset audio. Moving toward broad availability.

      The Bottom Line

      Partners run helpdesks, and the integrations work keeps tickets current with far less manual effort, on a layer built to extend to future platforms rather than rebuild each time. Standardizing on the X30 collapses hardware and training overhead. The caller ID and mobile fixes remove support tickets before they get filed.

      Unity Platform: Try the New Experience Today

      What We Delivered

      • Refreshed Unity Platform interface (Try It Now). Use the 'Try It Now' button in the top right of Unity Platform to switch today. It becomes the default in July, and trying it now lets your team get comfortable on their own timing.
      • Reliable session continuity. Proactive token renewal keeps partner sessions active instead of logging you out unexpectedly, with consistent security timeouts across the platform.
      • More accurate connection alerts. M365 connection alerts are more accurate, with clearer emails explaining exactly why a reconnection is needed.

      The Bottom Line

      The interface refresh is the visible win. The session and alerting work is quieter but removes two recurring annoyances: surprise logouts and connection alerts that cried wolf.

      A Quick Look at What's Ahead

      • Insurance Manager expands. Continued cyber insurance work deepens coverage mapping and tracking, plus an Enhanced Risk Register where Telivy findings auto-populate the Tentacle risk register. Bulk PSA task sync moves to GA.
      • Telivy prioritization gets fully explainable. A complete 0–100 per-finding risk score with asset criticality based on PII lands in June. Crosswalk Review and M365 policy enforcement move from Early Access toward GA.
      • ControlOne pushes enforcement to the edge. Bridge Firewall Enforcement is in active development bringing edge-level firewall rules including address groups, rule precedence, stateful enforcement, and zone-to-zone directional rules.
      • More UCaaS integrations on the same framework. ConnectWise targeting Early Access in July 2026, with Salesforce and Microsoft Teams next in the pipeline.
      • Unity Platform Command Center. A new Command Center centralizing key data, insights, and next-best actions across the portfolio, with early preview expected in July. Embedded SSO federation is in Early Access, the guided setup wizard integrates any major identity provider (Okta, Ping, etc.). Request access now; broader availability targeted for July–August.

      Assess. Prioritize. Remediate. Prove. Five products that work on their own. A platform that makes them work together. Each quarter we deepen that investment - one complete view of every client, and more ways for partners to protect them and grow around it.

      Visit releases.cytracom.com for full details. Subscribe there for real-time updates as releases ship.

      Early Access: You're in the Driver's Seat

      Several of this quarter's most interesting capabilities are available right now, with no support ticket required. Opt in and help shape what ships next.

      • Insurance Manager (Limited Release): Map your existing Telivy and Tentacle compliance evidence to client cyber insurance questionnaires - continuously monitored, not just at renewal. A new billable line for every client carrying a policy. Log into Unity Platform and request access.
      • Refreshed Unity Platform interface: Use the 'Try It Now' button in the top right.
      • Telivy: Crosswalk Review, M365 policy enforcement, and Release Channels are in Early Access.
      • UCaaS: Mobile redesign and configurable PSA ticket creation settings are in Early Access.
      • Embedded SSO federation: In limited release in Unity Platform. Request access to start integrating your identity provider.

      The partners who lean into Early Access are the ones who influence the roadmap most directly.

      Welcome to the Family

      The TeamLogic IT community continues to grow. Please join us in welcoming our newest franchise partners to Cytracom:

      • Eric Leon | TeamLogic IT of West Palm Beach, FL
      • Ryan Rice | TeamLogic IT of St. Charles County, MO
      • Jim Dart | TeamLogic IT of La Grange, IL
      • Alexander Peralta | TeamLogic IT of Gainesville, GA
      • Karl Moore | TeamLogic IT of South Salt Lake City, UT

      We're excited to support you as you build your first client relationships. Welcome aboard!

      Pax8 Beyond Highlight

      One theme surfaced repeatedly at Pax8 Beyond: MSPs are moving past point-product security toward managing risk across the entire client environment, including AI. As clients adopt AI tools at an accelerating pace, the questions partners are fielding have shifted: who has access, which tools are approved, and how to prevent sensitive data from leaking through unsanctioned applications.

      ControlOne gives MSPs centralized control over network access, branch connectivity, and user activity - including policy enforcement around AI usage. Combined with Telivy, partners gain the visibility to support stronger governance conversations with every client. Endpoint and identity security are table stakes. Network security, secure access, and AI governance are where the conversation is heading - and where Cytracom helps partners stay ahead.

      Upcoming Events: Let's Connect

      We're looking forward to connecting with TeamLogic IT partners throughout the fall. If you'll be attending any of the events below, we'd love the opportunity to see you in person! Let’s talk about how we can host you and your colleagues for a meal, drinks, or an off-site activity.

      • XChange Security | July 15–17 | Dallas, TX
      • TruPeer | July 20–23 | Virtual
      • TMT Producers Club | July 23–24 | Nashville, TN
      • ChannelCon | August 3–5 | San Diego, CA
      • Channel Daze | August 3-14 | Virtual
      • XChange Security | August 9-11 | Washington, DC
      • VISION | August 19-21 | Plano, TX

      Supporting Your Success

      At Cytracom, we're committed to helping you stay informed, supported, and equipped to better serve your clients and grow your business.

      As the needs of MSPs continue to evolve, we want this newsletter to deliver practical insights, partner resources, and business conversations that are relevant to your day-to-day operations.

      If there's a topic, challenge, or opportunity you'd like us to cover in an upcoming edition, we'd love to hear from you.

      Contact: swise@cytracom.com

      Thank you for your continued partnership and leadership within the TeamLogic IT community.

      — The Cytracom Team

      Stay up to date