Advisory — vCISO

A security leader on call. Without hiring one.

Get the strategy, governance and accountability of a Chief Information Security Officer — backed by Identiqa's platform and methodology, at a fraction of a full-time hire.

Your dedicated security lead — not a chatbot, a real person.
The gap

You need security leadership. A full-time CISO is overkill.

01

Your customers are asking

Security questionnaires and vendor reviews now decide deals. Without answers, six-figure contracts stall in procurement.

02

Insurers and auditors too

Cyber-insurance forms, SOC 2, HIPAA — someone has to own it, keep it current, and sign their name to it.

03

And the board wants answers

"Are we secure?" deserves more than a shrug. You need a roadmap, real metrics, and someone accountable.

A full-time CISO costs $250k–$500k a year. Most businesses under 1,000 people don't need 40 hours a week of it — they need the right 10.
What you get

Leadership that moves the needle — in plain English.

A roadmap and someone accountable

A prioritized security program, owned and steered — not a binder that gathers dust.

Pass insurance & customer reviews

We handle the questionnaires and attestations that unblock deals and lower premiums.

Reach & keep compliance

SOC 2, ISO 27001, HIPAA — readiness and maintenance, without hiring a team.

Board-ready reporting

Clear metrics and a status your leadership, investors and insurers can actually read.

How it works

Your dedicated lead, backed by our platform.

A real security leader steers; the Identiqa platform and methodology do the heavy lifting — so you get more from every hour.

1

Baseline

We start with a baseline assessment so your lead works from facts, not guesswork.

2

Lead & cadence

A dedicated security lead runs your program on a set cadence — strategy, policies, reporting.

3

Continuous oversight

Risks, vendors, compliance and insurance — handled and kept current, all year.

Plans

Pick the level of leadership you need.

All plans are billed annually, in advance — on a 12-month commitment. Prices shown per month for comparison.
vCISO

Essentials

Light-touch leadership to get a real program started.

$2,500/mo
$30,000 / year
Billed annually, in advance · 12-month term
  • Dedicated security lead (advisory hours included)
  • Quarterly strategy session + security roadmap
  • Baseline policies + risk register, kept current
  • Board-ready status summary
  • Onboarding baseline included
Technical Security Support+$700/mo

On-demand technical security engineer for hands-on tasks, plus optional access to our 24×7 SOC team for incident analysis.

Optional · +$8,400/year, billed annually with your plan
Book a fit call
Most popular vCISO

Growth

Active security leadership for a growing business.

$4,500/mo
$54,000 / year
Billed annually, in advance · 12-month term
  • Everything in Essentials
  • Monthly cadence with your security lead
  • Cyber-insurance & customer-questionnaire support
  • Vendor / third-party risk management
  • Security-awareness oversight
  • IR readiness (plan + 1 tabletop / year)
Technical Security Support+$1,600/mo

Hands-on engineer + 24×7 SOC access, plus monthly reviews by a Senior Security Engineer.

Optional · +$19,200/year, billed annually with your plan
Book a fit call
vCISO

Compliance

Full ownership when you need a certificate.

$12,500/mo
$150,000 / year
Billed annually, in advance · 12-month term
  • Everything in Growth
  • Full program ownership toward SOC 2 / ISO 27001 / HIPAA
  • Audit liaison & evidence coordination
  • Faster response SLAs
  • More dedicated advisory hours
Technical Security Support+$5,000/mo

Hands-on engineer + 24×7 SOC access, plus quarterly reviews by a Security Principal.

Optional · +$60,000/year, billed annually with your plan
Book a fit call
Questions

The things owners ask first.

Security leadership only works as a continuous relationship — a few weeks doesn't move anything. The annual commitment lets us dedicate the right people to you and keep the price well below a part-time hire.

You get a dedicated security lead — a real, experienced person — backed by Identiqa's platform, templates and methodology. The platform does the heavy lifting so your lead's time goes to judgment and strategy, not busywork.

Every plan starts with an onboarding baseline so your lead works from facts. If you've already done an Identiqa Risk Assessment, it feeds straight in.

NIST CSF and CIS as the backbone, plus readiness and maintenance for SOC 2, ISO 27001 and HIPAA on the Compliance plan.

Each plan includes a set amount of your lead's time, sized to its scope. If you consistently need more, we'll move you up a tier — no surprise overage on your invoice.

Not sure which level fits?

Grab a short fit call. We'll look at where you stand, what's driving the need, and recommend the right plan — no pressure.