Hancock & Poole Security Inc. (HPS) works with growing organizations that lack a dedicated Information Security Executive, such as a Chief Information Security Officer (CISO). Hiring a full-time CISO can be expensive, and finding the perfect person to address your information security requirements and concerns is challenging. To bridge the gap, HPS provides Virtual Chief Information Security Officer (vCISO) services. We provide leadership that transforms your organization’s information security practices into a mature and aware program. With this service, you gain access to an assigned vCISO. Additionally, you gain access to a team of expert analysts who turn your business strategies into technical solutions. Your curated team focuses on your specific needs and implements custom solutions quickly. HPS is a full-service information security consulting and management company. To help maximize your vCISO service, we offer an array of security-related functions, including:
Always on your side with CISO leadership
- Risk Assessments / Gap Analysis
- Policy Review and Development
- IT Audit Support
- Business Continuity and Disaster Recovery Planning
- System Integrations
- Cloud Migration considerations and options
- Penetration Testing (Ethical Hacking)
- ISO 27001 Assessments
- Vulnerability Scanning
- Social Engineering Testing
- Internal IT Audit
- Security Awareness Training
Managed Security Service
We offer our vCISO service as a managed security service with a flat monthly rate. The process is simple and starts immediately upon signup.
Benefits of a vCISO
The role of the CISO requires both executive leadership skills and technical acumen. This position is charged with driving a company’s security strategy and planning to create a robust and pragmatic Information Security program. Unfortunately, it is difficult for small and medium-sized businesses (SMBs) to obtain such support due to the high costs of hiring a full-time CISO and competition for skilled and available personnel.
Thanks to modern communications and cloud computing technologies, a virtual CISO (vCISO) operates just like an “on-premises” officer without the costs associated with full-time or persistent physical presence.
Key benefits include:
Keep your vCISO on retainer for a certain number of hours or onboard your vCISO for a specific project. If you choose to transition to a full-time CISO, use your vCISO to qualify and interview candidates.
Your vCISO leverages the entire HPS network of IT security experts to address your specific challenges. Our “all-hands-on-deck” approach supports your organization’s immediate and future needs.
You gain immediate access to information security expertise with a vCISO. Cyber Security experts are in high demand and the hiring process can take months. Your vCISO saves you time and money so you can focus on your core business functions.
Your vCISO implements a standard process developed by HPS. The process streamlines onboarding and planning so that your information security program gets ramped up quickly. The following is a summary of our approach:
Understand the inventory of assets
Complete or examine the organization’s inventory
Align the vision of security against the business objectives
Develop short term and long term strategic roadmap
Identify, prioritize and mitigate risks
Evaluate (establish if necessary) the process for risk tracking and reporting
Communicate the to the executive team
Present the “as is” state of the information security posture