Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Virtual CSO


Published on

If you need full-time security management on a part-time salary, check out this presentation.

  • Be the first to comment

  • Be the first to like this

Virtual CSO

  1. 1. Virtual CSOWhat You Need, When You Need It Bryan Miller Syrinx Technologies 804-539-9154
  2. 2. Virtual CSO Agenda Security Roadblocks Business Benefits Technical Benefits Summary Next Steps Q&A 2
  3. 3. Virtual CSO Security Roadblocks Cost  Perception of high cost of security  Work overload – “I have enough to do already” Policy  Implementation becomes an afterthought  Lack of support for policy enforcement 3
  4. 4. Virtual CSO Security Roadblocks Risk vs. Reward  False Sense of Security  We’ve never been hacked  Who would want what we have  We’re too small to be a target  Security becomes a “nice to have”  Security often seen as a cost, not a savings  Security delays implementation 4
  5. 5. Virtual CSO Business Benefits No payroll taxes or benefit costs No training costs Flexibility - each client chooses a customized solution to fit their budget 5
  6. 6. Virtual CSO Technical Benefits Initial Policy and Procedure Development/Review  Annual Updates Initial Internal and External Penetration Testing  Develop a Baseline Follow-up Penetration Testing  Annual External and Internal Testing 6
  7. 7. Virtual CSO Technical Benefits Options  Monthly Block Time  Security Awareness Training Program Development  Incident Response Program Development  Compliance Program Consulting  HIPAA, PCI, NCUA 7
  8. 8. Virtual CSO Technical Benefits Options  Developing/Updating Infrastructure Documentation  Customized Vulnerability Notifications  Server Hardening Best Practices  Disaster Recovery (DR) and Business Continuity Plan (BCP) Development 8
  9. 9. Virtual CSO SummaryThe CSO position is necessary but often unfunded.Outsourcing provides a reasonable return on investment.Syrinx Technologies can provide the required services at reduced costs. 9
  10. 10. Virtual CSO Next Steps Decide if this is right for your organization  Assess your current security posture  Compute the ROI Develop an action plan  Work with Syrinx Technologies to choose your options and develop a roadmap Implement the plan  Yearly program review and tuning 10
  11. 11. Virtual CSO Q&A How is this program priced?  Once the client chooses their desired options, a yearly proposal will be provided. Are there any minimum or maximum service periods?  The client may cancel at any time with 30 days written notice. How often am I billed?  Syrinx Technologies will bill the client monthly. Are Service Level Agreements (SLA) available?  Yes, specific SLAs can be written into the service agreement. 11