Trust, but verify. These famous words of Ronald Reagan, who, incidentally, would make a fantastic CISO, are also the simplest explanation of what it’s like to work as a virtual CISO. If step one is building trust and relationship with clients, step two is being let in to see all the inner workings and operations to make informed and strategic decisions. In this episode, John interviews Andrew Farkas, Virtual CISO at Pivot Point Security, about his experience as a vCISO and why the need exists for such a role.   What we talked about:

• What is a vCISO and why you (probably) need one
• Working with a vCISO to create a security plan
• Real examples of what a vCISO does
• Scope vs Risk vs Gaps

  You can reach out to Andrew via the Pivot Point Security website. To hear this episode, and many more like it, you can subscribe to The Virtual CISO Podcast here. If you don’t use Apple Podcasts, you can find all our episodes here.