CISO as a Service
We provide highly skilled and experienced Chief Information Security Officers (CISO’s) for all types and sizes of organisations.
The role of the CISO is to manage the Governance, Risk and Compliance (GRC) relating to the protection of information assets that are processed or managed by the organisation. The CISO reports to the highest level within the organisation and manages the Security Improvement Plan.
CISO as a Service is provided at three levels outlined below.
A dedicated and skilled security professional
CISO Service Levels
We offer three levels of CISO as a Service. The amount of time spent each month is where the main differences lie. Levels 2 and 3 do, however, include some extra activities and services such as providing staff with online awareness training.
CISO Level 1
- 8 hours per month
- Dedicated Certified CISO
- Security Management Plan
- Cyber Risk Assessment
- Incident Response Plan
- Access to Incident Portal
- Monthly Review Call
- Monthly Status Report
- Dark Web Monitoring
We work with your existing IT team or managed service provider to reduce your cyber risk exposure and reduce impact of any incidents.
Ideal for small to medium sized organisations.
CISO Level 2
- 16 hours per month
- Dedicated Certified CISO
- Security Management Plan
- Cyber Risk Assessment
- Incident Response Plan
- Access to Incident Portal
- Monthly Review Call
- Monthly Status Report
- Dark Web Monitoring
We work with your existing IT team or managed service provider to reduce your cyber risk exposure and reduce impact of any incidents.
Ideal for medium sized organisations.
CISO Level 3
- 40 hours per month
- Dedicated Certified CISO
- Security Management Plan
- Cyber Risk Assessment
- Incident Response Plan
- Access to Incident Portal
- Monthly Review Call
- Monthly Status Report
- Dark Web Monitoring
We work with your existing IT team or managed service provider to reduce your cyber risk exposure and reduce impact of any incidents.
Ideal for large sized organisations.
What do our clients say?
Schedule a short call to discuss this service.
Let’s get the conversation started. We can discuss the role of the CISO, the different levels and how this may match your organisations requirements.
The role of the CISO
“At a boardroom or at a 'nuke proof' datacenter, a Chief Information Security Officer 2.0 participates in creating and protecting the digital value. The role of a CISO evolves from a ´policeman of computers´ to a ´dietitian of risk appetite"
How does a CISO add value?
The CISO role is designed to align your information and cyber security activities with your overall business goals and objectives.
Having a virtual CISO (i.e. via our CISO as a Service) provides your organisation the skills and expertise that you need to reduce risk and increase compliance. Ultimately this will improve your commercial positioning with your current and future customer base.
The value here is that your organisation will be less likely to have a successful cyber attack, will be better prepared if one occurs and therefore you will be less likely to suffer financial losses at the rate you would have otherwise.
Also, the CISO is available to assist with procurement questionnaires and directly support your pre-sales teams in securing new business.
How qualified are our CISO's?
Qualifications will vary, however all of our CISO’s are certified and have at least one other certification in information and cyber security. The majority of our CISO’s have data protection certifications and many have other related certifications such as programme and project management.
Certified CISO
Our CISO’s have all undertaken training with the EC Council, Certified Information Security Officer (CCISO).
CISSP
Many of our CISO’s have passed their Certified Information Systems Security Professional certification.
Certified DPO
All of our CISO’s are certified Data Protection Officers and have passed their CDPO certification.
ISO27001
A mojority of our CISO’s have passed a qualification in the International Standard for Information Security.
