Hi, my name is

Josh

Cybersecurity Leader. Mentor. Professional Speaker.

With 2 decades of experience in IT, Cybersecurity, and Resturant Operations, I help organizations navigate the evolving threat landscape. I’m passionate about building a culture of cyber resilience and make technical concepts accessible for any audience

Hugo Profile profile image

About Me

Hugo Profile profile picture

Josh Hohbein is a cybersecurity professional with nearly 20 years of experience helping organizations navigate the ever-changing world of IT and security. As a leader in the managed services industry, Josh specializes in transforming complex cybersecurity concepts into practical, understandable actions that business leaders can actually implement.

Known for his engaging and approachable speaking style, Josh focuses on the human side of technology; bridging the gap between technical teams, business leaders, and end users. He believes that successful cybersecurity isn’t just about tools and frameworks; it’s about communication, trust, and helping people make informed decisions.

Throughout his career, Josh has worked with organizations of all sizes, leading cybersecurity programs, risk management initiatives, cloud transformations, and strategic technology planning. Whether speaking about cyber maturity, leadership, automation, or security awareness, his goal is always the same - make technology less intimidating and more actionable.

Passionate about education and community building, Josh regularly shares insights with MSPs, business leaders, and security professionals, helping them cut through complexity and focus on what matters most - protecting people, enabling growth, and building resilient organizations.

Experience & Involvement

centrexIT
Manager of Cybersecurity and Automation - centrexIT
I oversee centrexIT’s cybersecurity program and deliver vCISO services to clients with my unique combination of hands on technical experience coupled with business leadership experience; helping them align to security frameworks, build a security culture, implement cyber awareness training, and measurably improve their security posture. I also lead our automation team, partnering with clients and internal stakeholders to streamline processes and drive business outcomes through automation.
IR Game
Facilitator - IR Game
IR Game drops teams into the fire: realistic incident response scenarios where resources are scarce, the clock is ticking, and every decision has consequences. I’ve designed several scenarios and facilate tabletop exercises, both virtually and in-person, that force organizations to confront hard questions before a real crisis does it for them. Whether it’s a ransomware lockdown at 2am or a breach with no clear blast radius, I build the pressure that turns unprepared teams into ones who’ve already been there.
GTIA Trustmark
Working Group Member - GTIA Trustmark

GTIA’s cybersecurity programs are shaped by members who bring real-world experience, practical insight, and a focus on what the industry needs most. As a member of the Cybersecurity Trustmark Working Group, I help ensure the Trustmark remains relevant, credible, and valuable to the IT industry by maintaining the Trustmark Standard, developing practical resources for program participants, and championing both the Trustmark and GTIA across the community.

I also helped lead centrexIT to become one of the first MSPs to achieve Assured status under the Trustmark.

CyberRise
Board Member for Framework Maps - CyberRise
Framework Maps takes the ambiguity out of cybersecurity frameworks by breaking each control down into its core requirement, supporting elements, implementation steps, and vendor mappings so practitioners can move from theory to action. I serve on the board helping guide the direction of the project, ensuring it stays practitioner-first and genuinely useful for the people doing the work, not just checking compliance boxes.
MSP Media Network

Creating and hosting content that educates MSPs, IT professionals, and business leaders on cybersecurity, technology trends, and industry best practices. I host three shows on the network:

MSP Dispatch — Your source for news, community events, and commentary in the MSP channel.

MSP Community Live — A community roundtable where we dig into stories from Reddit and across the channel, debate the hot takes, swap advice, and have some fun along the way.

The Other Side — A show about the people behind the businesses. Each episode goes beyond the tech talk to explore the personal stories, motivations, and journeys of notable figures in the MSP community.

Empath
Navigator - Empath

Empath is a learning platform built specifically for MSPs, structured, practical, and designed to help teams grow with purpose. I have two published courses on the platform:

Cybersecurity Framework Alignment Made Easy — A practical guide for MSPs looking to build and mature their security offerings around recognized frameworks and best practices. Covers how to structure your services, align your delivery to industry standards, and bring your clients along the journey in a way that’s clear, credible, and repeatable.

Serving Up Solutions — Drawing on years of restaurant industry experience, this course translates the lessons of high-performance service environments into actionable strategies for MSPs. From hiring and soft skills to operational efficiency, compliance, and client experience — the parallels are more powerful than you’d expect.

InfraGard
Board Member - Membership Coordinator - InfraGard

InfraGard is an FBI partnership program connecting private sector professionals with federal agencies to share intelligence on threats to critical infrastructure. It’s not just a networking group; it’s a direct line to the intel that helps organizations understand what they’re actually up against.

As Board Member and Membership Coordinator for the South Dakota chapter, I focus on making sure members actually get something out of their involvement. That means surfacing the right resources, making the right connections, and being an outspoken advocate for why serious cybersecurity and IT professionals should have a seat at this table.

Co-Author - Sherweb

Co-authored with Roddy Bergeron, An MSP Guide to CIS Controls and Implementation is a practical resource bundle built for MSPs who want to stop treating the CIS Controls as a compliance checkbox and start using them as an actual security roadmap.

The guide walks through the Controls in a way that’s grounded in how MSPs actually operate — mapping them to real-world service delivery, client conversations, and the realities of working with organizations that don’t have dedicated security teams. The goal was to make implementation approachable without watering down what matters.

Download the bundle →

Speaking Topics

Available for conferences, company events, MSP community sessions, and more. Reach out to discuss format and fit for your audience.

Serving Up Solutions: Running Your MSP Like a Five-Star Restaurant
Leadership Operations MSP
Serving Up Solutions: Running Your MSP Like a Five-Star Restaurant
Your MSP is already a service business. This talk draws on real restaurant experience to show how prep lists, rush hour, and five-star service culture translate into better IT teams, faster onboarding, and clients who notice the difference. Josh traces his path from Blazin' Wings to the blue team and makes the case that great MSP service and great hospitality are built the same way.
Book This Talk
How to Align to a Framework (For People Who Don't Give a Sh*t About Frameworks)
Frameworks Cybersecurity MSP
How to Align to a Framework (For People Who Don't Give a Sh*t About Frameworks)
Most people check out the moment someone says "cybersecurity framework." This talk is for them. Josh breaks down how aligning to CIS doesn't have to be a compliance project nobody wants to own. The five-stage maturity model in this session turns an overwhelming list of controls into a roadmap your team can actually follow, with clear priorities, real ROI, and a structure you can build your entire security program around. You can't make frameworks easier than this.
Book This Talk
What a Real Security Assessment Actually Looks Like
Assessment MSP Business Development
What a Real Security Assessment Actually Looks Like
Most assessments are either a fear tactic or a document nobody reads. An external scan full of CVEs your client doesn't understand, or a 60-page PDF with charts that answer none of the right questions. This session is a live walkthrough of a client consult done right. Josh takes the audience through a real risk assignment that surfaces actual business risk in plain language, maps it to a framework, and hands the client a clear roadmap of where they are today, where they need to be, and how to get there. For MSPs, it also shows exactly where the NRR and MRR opportunities live inside work you should already be doing. Pairs well with the framework alignment session.
Book This Talk
Panels, Firesides & Honest Conversations
Leadership Culture Panel
Panels, Firesides & Honest Conversations
Not every great session needs slides. Some of the best conversations happen when you put the right people in a room and let them actually talk. Josh brings real-world perspective to panel discussions and fireside chats on leadership, operations, cybersecurity, culture, and the human side of IT. No fluff, no canned answers. If you want someone who will engage authentically, push the conversation somewhere useful, and meet your audience where they are, reach out and let's figure out what that looks like.
Let's Collaborate

Get in Touch

Looking to book a talk, start a conversation about cybersecurity, or connect on something in the MSP community? Reach out. I’d love to collaborate!
Reach Out