Create and run programs that improve information security, privacy, and compliance
Our experts have served as full time, interim, and fractional Chief Information Security Officer (CISO) in a variety of industries from start-ups to publicly traded household names.
We develop security, privacy, and compliance programs to support our customers as they grow, while articulating a clear vision and defining success for their CISO role. This helps in the creation of a realistic job description, preparation of the board to build a role that is poised for success, and participation in the hiring of a full-time, dedicated security leader.
Fractional CISO engagements also leverage one or more of the following Evertas Professional Services products:
- Information Security and Information Security Compliance program creation and management
- Risk Assessment
- Internal Compliance Program Assessment
- Internal SDLC Compliance Assessment & Code Audit Prep
- Incident Readiness Assessment
Offerings
- Written report and executive-level presentation containing analysis of current state, specific recommendations, and a proposed timeline for improvement.
- A set number (typically 20 to 40) of monthly hours for continuing analysis, advisory consulting, and program development/improvement.
- Governance, risk and compliance strategic development.
- Execution of strategic plans.
- Security maturity assessments and mentorship of personnel.
- Collaboration with HR and executive team to define the CISO role.
- Security engineering and architecture support.