Virtual CISO & Compliance

What a virtual CISO does for you

If you are a COO or founder, security has probably landed on your desk on top of everything else. A virtual CISO (vCISO) takes that weight: we set direction, decide where the next franc of budget does the most good, and translate between your business and the technical work. You get the judgement of a senior security leader at a fraction of the cost — and you keep ownership.

ISO 27001 without the theatre

Certification can quietly become a documentation exercise. We sort the controls that change your real exposure from the ones that only need evidence, and we sequence them so the risk-reducing work comes first. By the time an auditor arrives, the binder reflects something true.

NIS2 and what it means for you

NIS2 widens who is in scope and raises the bar on risk management, incident reporting, and accountability. We run a gap analysis against your actual setup and give you a prioritised roadmap — not a panic. Most teams find the first steps are about visibility and a written response plan, which also happen to be good security regardless of the directive.

GDPR, FADP, and where your data sits

We are based in Switzerland and work to both the Swiss Federal Act on Data Protection (FADP) and the EU GDPR. We keep data handling explicit, help you map what you hold and why, and make sure your security choices and your privacy obligations point the same direction.