Virtual CISO (vCISO)
Senior security leadership, without the senior hire. A fractional CISO for your business.
What is this service?
A Chief Information Security Officer (CISO) is one of the most important roles in a modern technology company. A Virtual CISO gives you everything a full-time CISO provides, board-level security strategy, risk management, compliance governance, supplier security oversight, incident response leadership, at a monthly retainer that scales with your needs.
What we deliver
Every engagement includes these core deliverables, tailored to your organisation.
How we engage with you
A structured onboarding and ongoing retainer model designed for your business.
Onboarding
Security posture review, stakeholder meetings, priority identification.
Foundation
Security roadmap, governance framework, quick wins delivered.
Retainer
Monthly advisory, board reports, risk management, questionnaire support.
Transparent pricing
No hidden fees. No surprise invoices. Choose the tier that fits your organisation.
vCISO Basic
Post-certification governance
- 10–12 hrs/month
- Monthly security review
- Board report
- Policy maintenance
- Email support
vCISO Standard
Active enterprise sales
- 18–22 hrs/month
- All Basic features
- Security questionnaire management
- Incident response planning
- Quarterly risk register update
vCISO Enterprise
Regulated / pre-IPO
- 22–30 hrs/month
- All Standard features
- On-site presence
- Board presentation
- M&A security due diligence
Frequently asked questions
A consultant delivers a project and leaves. A vCISO is an ongoing senior security leader embedded in your business, attending board meetings, managing your security programme, and being accountable for outcomes.
You may also need
Complementary services that strengthen your compliance posture.
Ready to start your vCISO journey?
Book a free gap analysis call. In 30 minutes you will know exactly where you stand, what it takes, and what it costs.
Most clients book their first paid engagement within 2 weeks of their gap analysis call.