Your virtual CISO for K-12.

We believe that expert cybersecurity leadership should be affordable for schools. We understand K-12 budgets and the need for predictability. Our transparent model provides clear deliverables and costs.

Risk Assessments

We provide full risk assessments based on the NIST framework adapted for schools

Security Roadmap

Our security roadmap prioritizes initiatives based on your needs and budget

Incident Response Planning

Our team reviews your current state and helps you develop effective, sustainable plans

Full WISP Development

We work with your team top develop comprehensive written information security plans

Architectural Design

Based on our risk assessment, we will help you implement cost-effective, highly effective solutions

Defense in Depth

We take a holistic view of security, layering approaches to tailor to your risk appetite

An array of resources

We have vCISO tiers for every size school and district and for every budget.
Our model is transparent and scalable.

vCISO: Foundational Security Program

  • Quarterly virtual security strategy sessions
  • Annual risk assessment aligned with NIST CSF
  • Policy review and update (FERPA, COPPA compliance)
  • Incident Response Plan development
  • Email & phone support during business hours
Windows of a building in Nuremberg, Germany

vCISO+ Elite: Comprehensive Cybersecurity Leadership

All Foundation and Enhanced services, plus:

  • Weekly virtual CISO check-ins
  • Continuous compliance monitoring (FERPA, COPPA, CT Data Privacy Act)
  • Tabletop exercises for ransomware and breach scenarios
  • Advanced threat intelligence reporting
  • Coordination with law enforcement and insurance during incidents
  • Unlimited executive briefings and board presentations

vCISO+: Enhanced Cybersecurity Leadership

All Foundation services, plus:

  • Bi-monthly virtual CISO advisory meetings
  • Full security roadmap with prioritized initiatives
  • Vendor risk management and procurement support
  • Full Written Information Security Plan – Creation and Annual Review
  • Staff cybersecurity awareness training (2 sessions/year)
  • Compliance audit assistance (state privacy laws)
  • 24-hour response SLA for critical incidents