Select your CISO as a Service Plan

We’re here to provide the best possible service no matter your budget.

PLAN
Seed
GUIDE
Starting at
$
4,000/month

For teams that are just beginning their security journey and are not yet looking to achieve compliance with any major frameworks, even if that is on the horizon.

Security risk assessment
Executive strategy
Security roadmap
SAQ’s
Insight on tools, tech, resources, etc
Policy/doc templates
Schedule a Call
PLAN
Sprout
SUPPORT
Starting at
$
7,000/month

For teams that are actively pursuing compliance against a popular framework, such as ISO 27001 or SOC 2, or are interested in maturing from security infancy into an organized program.

Organize security program
Build compliance framework
Security roadmap
Suggest mechanisms for audits
Test control performance
Suggest risk mitigation tools
Schedule a Call
PLAN
Sapling
LEAD
Starting at
$
10,000/month

For teams already maintaining or needing help maturing a security and compliance program. This is the most involved level of service and our team would be an extension of your team's capabilities.

Security compliance program
Procedures documentation
Control performance tracking
Review/improve audit evidence
Tools implementation
Architecture reviews
Schedule a Call

Why a Monthly Subscription Instead of Hourly?

Your costs are predictable
No onboarding fees
Easily exit the contract if you are not satisfied
Compare all features

Understand your IT environment and security program to provide expert insight into industry leading practices

Conduct initial security assessment to understand deficiencies and improvement areas.

Establish a proposed program roadmap for security projects based on identified deficiencies

Maintain a deep understanding of your business model and objectives

Respond to Security Questionnaires from your customers and support you in responding to customer queries, as needed.

Provide Weekly Report Card on Progress, Issues, etc.

Provide expert opinions on diverse security topics, regulation, and strategy

Create and update policies and controls to align with desired compliance frameworks

Enhance internal compliance structure and support implementation of processes

Collaborate with your team to enhance marketing deliverables and wording related to security

Review existing security awareness content, provide updates, and create new content alongside your team.

Understand existing architecture, data flows, and tool integrations to provide recommendations on enhancement

Conduct recurring security team meetings with management

Assist in the selection, procurement, and implementation of a GRC solution

Review control evidence for ongoing compliance or upcoming audit

Lead and direct security program enhancements and/or compliance initiatives including: defining scope and objectives, providing recommendations on configuration, and assigning tasks to delegates for implementation

Oversee annual compliance audits:
- Coordinate compliance efforts
- represent your company with audit team
- facilitate evidence validation before and during audit fieldwork

Coordinate annual security incident response, business continuity, and disaster recovery tests with operations and management