Viridus Security = Common sense governance, risk & compliance for growth stage companies.

There comes a point when proving security is necessary for closing deals. We can help you make security a competitive advantage.

Automated compliance tools help, but there are plenty of decisions to make along the way: 

1. How much time can I take away from core work?

2. What tools do I absolutely need immediately and which can wait (ticketing, IAM, HR, SDLC, etc)? 

3. Which controls don’t apply to my business, and how to do I convey that to the auditor? 

4. What kind of penetration testing makes sense? 

5. How the heck do I run and document a tabletop exercise? 

Whether you need ground up creation of policies, controls, processes and procedure or if already have a great program and are looking for CISO advice without hiring a full-time resource, we can help. 

Virtual CISO (vCISO)

Security Implementation advice and guidance: 

* Vendor (3rd Party) Assurance programs

* Document management

* Asset Management

* Application Management

* Risk Management

* IAM Identity Access Management

* Information Security outreach, training

* SDLC Security

Frameworks examples:

* SOC2

* GDPR

* PCI

* ISO27001

* HIPAA