​What is cyber resilience?

​Cyber resilience refers to an entity’s ability to continuously deliver the intended outcome despite adverse cyber events. Adverse cyber events are those that negatively impact the availability, integrity or confidentiality of networked IT systems and associated information and services. These events may be intentional (e.g. cyber attack) or unintentional (e.g. failed software update) and caused by humans or nature or a combination thereof.

​What is a vCISO?

A Virtual Chief Information Security Officer or vCISO is a service designed to provide outsourced executive level specialist cyber and information security expertise to organisations on a part time basis.

How does a vCISO service work?

  • vCISO service is tailored to our organisation’s specific cyber and information security maturity, capability and needs. It can be a combination of on-site and remote access to your own virtual CISO who can provide executive level advice and steer your cyber and information security strategy. 
  • The vCISO service can range from a few hours per month to a fully outsourced information security function. The services can also be scaled up or down to adjust to your according your changing information security requirements and maturity over time.

​What is the Global Cyber Alliance?

​Global Cyber Alliance (GCA) is an international, cross-sector effort dedicated to eradicating cyber risk and improving our connected world. GCA focuses on reducing cyber risk by developing and deploying practical, real-world solutions that measurably improve our collective cybersecurity. Find out more

Do I need a vCISO?

vCISO service is suitable for organisations who are facing significant cyber and information security risks or regulatory or customer obligations, but can’t justify having a full time CISO. Typically this would include:

  • Startups who are not yet at the size where a full time CISO is justified
  • Smaller organisations whose requirements or workload are not enough to have a full time CISO
  • Organisations who have a short term increased need to improve their cyber resilience through a focused program, which can then be scaled down when the desired capability maturity has been achieved
  • Organisations who have in-house or outsourced technical security resources available, but need a senior experience cyber security executive who can provide oversight and challenge to ensure that cyber risks are appropriately managed and that there are no “blind spots.”

Didn't find your answer? Submit your question.

Join our community and subscribe to our newsletter to get access to free resources on the Cyber Leadership Hub.