Services
Virtual CISO
Virtual CISO (vCISO) services provide a virtual executive presence of a Chief Information Security Officer. Team/talent development, board level presentations, compliance and policy governance are the highly sough after skills included in this service. Other services provided include but not limited to:
-
Red teaming / adversarial assessments
-
Audit preparation & pre-planning
-
Policy reviews and alignment
-
Gap assessments and compliance measurement
-
Security architecture recommendations
Cloud Security Roadmaps and Strategy
Comprehensive cloud migration planning with security recommendations and benchmarking. Includes common public cloud services (AWS, Google, Azure) and private cloud migrations. This service includes strategy and program management support.
Security Program Development
Independent external view of the existing cyber security program through qualitative and quantitative benchmarking using industry frameworks (NIST-CSF, CIS-18, ISO-27001/2 ). These services include:
-
Comprehensive reporting and evaluation with recommendations on a cyber security maturity roadmap
-
Risk reduction strategies including people, process and technology improvements
-
Executive presentation and full report
OT/ICS Security Assessments
Provide a comprehensive OT/ICS assessment and related advisory services with the goal of implementing a successful ICS Security Strategy. These services include but are not limited to:
-
Providing a blue print for best ICS practices using industry reference architectures (IEC 62443, Purdue model) and associated control frameworks NIST 800-82 ).
-
Technical adversarial testing, asset identification and reporting
Security Awareness
Global security awareness services including training materials, videos and engaging events and content
-
Phishing education and social engineering
-
Phishing testing and evaluation