0Tolerance is available to assist on a time-and-materials basis for vCISO fractional consulting needs. We will assign an expert information security consultant who will be an extension of your team. Some of the ways we can assist include:

• Answering and interpreting security questionnaires
• Assisting in IT due diligence and vendor management
• Being a sounding board and gut-check for your cybersecurity decisions
• Budgeting for future infosec spend
• Compliance direction and guidance
• Continuous compliance monitoring and reporting against specific compliance standards
• Convincing others in your organization why action is or isn’t needed, having unbiased third-party expert support
• Developing or reviewing incident response plans
• Developing or reviewing information security policies, procedures, and standards
• Developing or reviewing Plans of Action and Milestones (POAMs)
• Developing or reviewing System Security Plans (SSPs)
• Guidance on periodic vulnerability scans
• Merger and acquisition (M&A) due diligence reviews
• Password best practice and strength analysis
• Presenting to your clients or other third parties as your cybersecurity advocate
• Prioritizing remediation efforts
• Providing customized security awareness training through webinars
• Providing security guidance and recommendations
• Quick, one-off pen tests of new or upgraded infrastructure
• Retesting previously failed pen test findings
• Reviewing agreements and contracts for information security and compliance legalese
• Sitting in development meetings and advising on SecDevOps matters

► Have access to an information security consultant when you need them
► Convenient, flexible billing terms
► Get the advice you need, when you need it

► Have a security team on speed-dial
► Jump to the head of the line for consulting needs
► Build a long-lasting relationship with your consultant