What is a virtual CISO? When and how to hire one

Companies that can't afford a full-time CISO might hire a virtual CISO (vCISO) to provide strategic and operational security leadership.

Chief information security officers (CISOs) are in high demand, and good ones are expensive and difficult to find.

Following a rash of high-profile data breaches, and knowing that such breaches have far-reaching consequences that are far more costly than the cost of the breach itself, every organisation worth its salt is attempting to bridge the gap between full-scale investment in a CISO and winging it.

Is a virtual CISO (vCISO) on demand the answer to your prayers? A virtual CISO is a part-time or remote security practitioner or provider who offers their time and expertise to an organisation on an ongoing basis.

A Virtual CISO (vCISO) provides these critical skills to smaller businesses that don’t yet have the need or resources to hire an expensive executive, by limiting expenditure to only what is required to perform the relevant functions, whether it’s a few days a month, a few days a week, or even on an ad-hoc basis.

Vince Picton, CISSP, has the qualifications and experience necessary to deliver vCISO services on behalf of Unity Metrix Ltd. After many years as a company director, he is used to advising on cybersecurity and compliance without losing sight of the business’s commercial side.

As well as providing thought-leadership, posture, gap and risk analysis, he is well positioned to help with implementation projects like ISO 27001, PCI-DSS, IASME Governance and the like and is a registered IASME Governance and Cyber Essentials assessor.


What is a virtual CISO? When and how to hire one


Last updated:

Author tgadmin

Relevant links

Virtual CISO