Virtual CISO - Complete
In addition to everything else, we will function as your company’s Virtual CISO, ultimately responsible for driving, establishing, and maintaining an information security program. We will build, launch, and maintain your information security program. Additionally, we will work with all departments to ensure adequate security controls and processes are in place. We will provide management with updates on the company’s status and the security maturity; and re-prioritize initiatives as needed in alignment with your business’s objectives. We will come onsite at least once every quarter—monthly if local—to ensure proper alignment with goals. This position is most successful when reporting to the CFO, CEO, GC, or at least the CTO/CIO’s peer.
This option does require a 6-month commitment minimum to ensure proper program implementation, with a 30-60 day lead time based on scheduling and availability. An initial Enterprise Security Gap Analysis is also required to seed data and priorities for this service to be successful.