Fractional Chief Information Security Officer

Create and run programs that improve information security, privacy, and compliance

Our experts have served as full time, interim, and fractional Chief Information Security Officer (CISO) in a variety of industries from start-ups to publicly traded household names.

We develop security, privacy, and compliance programs to support our customers as they grow, while articulating a clear vision and defining success for their CISO role. This helps in the creation of a realistic job description, preparation of the board to build a role that is poised for success, and participation in the hiring of a full-time, dedicated security leader.

Fractional CISO engagements also leverage one or more of the following Evertas Professional Services products:

  • Information Security and Information Security Compliance program creation and management
  • Risk Assessment
  • Internal Compliance Program Assessment
  • Internal SDLC Compliance Assessment & Code Audit Prep
  • Incident Readiness Assessment


  • Written report and executive-level presentation containing analysis of current state, specific recommendations, and a proposed timeline for improvement.
  • A set number (typically 20 to 40) of monthly hours for continuing analysis, advisory consulting, and program development/improvement.
  • Governance, risk and compliance strategic development.
  • Execution of strategic plans.
  • Security maturity assessments and mentorship of personnel.
  • Collaboration with HR and executive team to define the CISO role.
  • Security engineering and architecture support.