vCISO
Accel Virtual CISO Service Offering (vCISO)
Small and medium-sized organisations face the same Information Security challenges as larger organisations do, but often don’t have the resources or in-house expertise to implement and manage all the necessary pillars of an effective Information Security Management Framework. This typically leaves multiple gaps both in terms of security strategy, oversight and also technical controls.
Camwey’s vCISO service helps your organisation address these technical and organisational security gaps ensuring your business stays on track in terms of protecting your data, operations and reputation.
Our vCISO service offers a cost-effective way of leveraging the skills and expertise of experienced Cyber Security professionals to deliver all aspects of security leadership on a part-time, remote basis.
vCISO on-boarding – Understanding your Business
Our on-boarding process starts with a high-level assessment of your current business operations and personnel. It brings into focus areas which need attention as a priority. Onboarding activity will include reviews of (but not limited to):
- Your organisational structure and operations
- Your systems and data
- Your relationships with customers, third parties and service providers
During the on-boarding phase we will undertake the initial security assessments to establish an initial Risk Register. We aim to gain a thorough understanding of your business priorities, short and medium-term objectives, long-term vision and day-to-day operations.
vCISO Portal
You will be setup on our vCISO Portal which we will use throughout the engagement. The Camwey vCISO Portal will be a single point of access for your organisation offering the following features and content – which will be customised to your business.
Security Health Check
Easy to use survey that provides a visual assessment of any gaps in the current security programme
Consulting
Customers have access via the portal to schedule remote consultations with their assigned security advisors
Policies
Access to Policy Templates which we will guide you through to establish a baseline Information Security Policy set
Security Intelligence
Quarterly reports highlight the global data breach trends
Incident Response
Access to incident response planning templates plus emergency access to a skilled security advisor when needed
Awareness Training
Training initiatives include links to security awareness websites, material and security awareness presentations.
Leaked Credentials
Receive alerts if user credentials that are part of your domain are exposed
News
Curated and searchable news feed focusing on risk reduction
PreBreach
Provides visibility into security indicators, allowing you to audit your security stance and proactively address any issues
vCISO Service
You will be assigned a named resource as your vCISO. This individual be involved in the service from the outset so will have a good understanding of your business, thus allowing them to tailor the service and security strategy to meet your business needs. Other skilled Camwey resources may be involved in certain aspects of vCISO service delivery.
Your assigned resource will guide you through all aspects of the Portal ensuring you know where to go and what to go to engage additional resources or get access to the information needed.
Whilst the Portal is an essential part of the toolkit we leverage to deliver the vCISO service, the service itself comprises the following elements.
- 30 years into Customer Services delivering Managed IT Services, RIM’s , Security Services
- Sustained YOY investments to improve Customers Experience
- Separate division for Cyber Security Engineering & Architecture design Services aligned with business compliance and global regulations standards.
- ISO 27001 Certified – 24/7 Global Security Operations Centre with separate Lab testing Facility
- NextGen Cyber Intelligence platform monitoring Deep web & Dark web Traffic.
- Certifications such as CISSP, CISM,CISA,CEH, PMP, ISO27001