CISO

 

Many of our clients are in a position where a full-time, dedicated Chief Information Security Officer would be difficult to justify, however they still have business needs which demand a coherent security strategy.  Most often these duties are layered on to the existing duties of a CIO, IT Director, or Network Administrator.  MRK can help to share that burden, and ensure that the limited security resources you do have are used efficiently by providing guidance as your Chief Information Security Officer (CISO).

MRK’s team has provided such guidance to a diverse group of organizations, ranging from Fortune 100 financials to small technology startups.  The team has worked in a range of verticals including Energy, Healthcare, Manufacturing, Government, Technology, and Financials; and holds a variety of industry certifications such as CISSP, GIAC, ISO 27001, GPEN, and GWAPT.

At MRK we believe in a results-oriented focus towards security.  We will leverage our Risk Assessment process to define the set of security projects that appropriate for your organization each year, and the resources needed to achieve them.  And just as if we were one of your internal directors, we will commit to the execution of these projects by their given deadlines.  MRK functions as an expert advisor who is an integrated part of your team, collaborating with them regularly, and ultimately accountable for the success of the Security Program.  Our goal is to ensure you have a capable CISO handling your security risks, even if that role is merely a part-time one.

 

CISO