Viridus Security = Common sense governance, risk & compliance for growth stage companies.
There comes a point when proving security is necessary for closing deals. We can help you make security a competitive advantage.
Automated compliance tools help, but there are plenty of decisions to make along the way:
1. How much time can I take away from core work?
2. What tools do I absolutely need immediately and which can wait (ticketing, IAM, HR, SDLC, etc)?
3. Which controls don’t apply to my business, and how to do I convey that to the auditor?
4. What kind of penetration testing makes sense?
5. How the heck do I run and document a tabletop exercise?
Whether you need ground up creation of policies, controls, processes and procedure or if already have a great program and are looking for CISO advice without hiring a full-time resource, we can help.
Virtual CISO (vCISO)
Security Implementation advice and guidance:
* Vendor (3rd Party) Assurance programs
* Document management
* Asset Management
* Application Management
* Risk Management
* IAM Identity Access Management
* Information Security outreach, training
* SDLC Security
Frameworks examples:
* SOC2
* GDPR
* PCI
* ISO27001
* HIPAA