Services · vCISO

CISO as a Service

Strategic leadership, powered by Vigil.

A human virtual CISO who takes responsibility for setting direction, prioritizing investments and accelerating security maturity — equipped with Vigil, our proprietary iCISO platform. Without the fixed overhead of an in-house CISO, but with the memory and structure of a well-run program.

Scope

What's included

  • Strategy and roadmap aligned with NIST CSF 2.0 / ISO 27001
  • Risk and compliance management (SOC 2, PCI, GDPR, HIPAA)
  • IR/BCP design and direction, tabletop exercises
  • Executive metrics (MTTD, MTTR, risk posture)
  • Vendor and external SOC governance
  • Vigil access — our iCISO platform — included in every tier
Pricing

Packages

Three tiers based on size and maturity. Prices are indicative; adjusted by sector and compliance needs.

Starter

10–15 hrs/mo
From USD 2,500/mo
  • Base governance
  • Risk Register
  • Basic IRP
  • Monthly KPIs
Most popular

Growth

20–30 hrs/mo
From USD 4,500/mo
  • 12-month roadmap
  • C-level KPIs
  • Tabletop exercises
  • Quarterly review

Enterprise

40–60 hrs/mo
From USD 7,500/mo
  • Security Master Plan
  • Internal audits
  • Board sessions
  • Vendor governance

Indicative prices. Adjusted by size, sector and compliance requirements.

Frequently asked questions

How is it different from one-off consulting?

The vCISO takes a continuous leadership and governance role, not just an assessment. We accompany execution.

Do you work with our current SOC or provider?

Yes. The vCISO orchestrates vendors, sets KPIs/SLAs and measures performance objectively.

How long does onboarding take?

2 to 4 weeks to complete Assessment + 90-day Plan. Varies by size and complexity.

Can you support audits and certifications?

Yes: pre-audit, gap analysis and remediation for ISO 27001, SOC 2, PCI DSS, GDPR and local regulations.

Does it include incident response?

The vCISO designs and directs the IR program. Operational execution is performed by the SOC/Blue Team (in-house or outsourced).

Ready to accelerate maturity?

Let's discuss your context and define the package that fits best.

Talk to an expert