Virtual CISO

What it is

Senior security leadership on retainer at 8 to 16 hours per month by tier, with one accountable point of contact. Hands on implementation, managed operations and incident response execution sit outside the retainer.

How it runs

1. 1 Advisory hours
2. 2 Quarterly risk review and register update
3. 3 Strategy and roadmap
4. 4 Board and executive reporting
5. 5 Incident response guidance and oversight
6. 6 Vendor and procurement security review
7. 7 Compliance oversight and policy development