Virtual Security
Organization (VSO)

We can be your full-scale security organization or augment your current team to close gaps in resources and experience through our subscription.

Your new “Virtual Security Organization” provides what you need to meet your security requirements.

1) You will have an experienced leader through our virtual CISO, typically unavailable to small businesses.

2) You are provided with a solid risk analysis and management process that fits your business.

3) Your Infosec program will be designed specifically for your organization, and we are experts in implementing these custom Infosec programs.

4) And we will walk you through the compliance requirements and be your representative for security audits.

Here is an example of what our subscription delivers! And this can be tailored to fit your needs.

Q1

REVIEW AND ANALYSIS

  • • ALIGN BUSINESS AND SECURITY
  • • ANALYZE SECURITY POSTURE
  • • CREATE SECURITY MATURITY MODEL(SMM)
  • • BUILD RISK ANALYSIS MATRIX
  • • CREATE GAP ANALYSIS
  • • MONTHLY AND QUARTERLY REPORTING

CONTROLS AND
REMEDIATION

  • • ALIGN REMEDIATIONS TO BUSINESS AND COMPLIANCE NEEDS
  • • CREATE GAP REMEDIATION PLAN
  • • DEFINE SECURITY CONTROLS
  • • OVERSEE GAP AND CONTROLS REMEDIATION
  • • TABLE-TOP EXERCISES
  • • MONTHLY AND QUARTERLY REPORTING
Q2
Q3

DOCUMENTATION
AND EDUCATION

  • • CONTINUE GAP REMEDIATION
  • • CREATE SECURITY POLICIES AND PROCEDURES
  • • CREATE RELATED COMPLIANCE DOCUMENTATION
  • • ESTABLISH SECURITY AWARENESS TRAINING PROGRAM
  • • TABLE-TOP EXERCISES
  • • MONTHLY AND QUARTERLY REPORTING

COMPLIANCE AND
VALIDATION

  • • EVIDENCE ANALYSIS AND CONTROL CHECKS
  • • INTERNAL AUDIT PREPARATION EXERCISE
  • • POINT OF CONTACT FOR 3RD PARTY AUDITS
  • • ASSIST WITH AUDIT FINDINGS AND REMEDIATIONS
  • • AUDIT POSTMORTEM
  • • TABLE-TOP EXERCISE
  • • MONTHLY, QUARTERLY, AND ANNUAL REPORTING
Q4