Call now for cybersecurity help: 888-646-1616

You probably
don't want us
as your Virtual CISO.

Seriously.  We're not for everyone.
That's OK - Let's Meet

You probably shouldn't hire us.  Here's why... 

This is a big project.

Most companies think they're in good shape.

We've worked with 100+ companies, and only one was close to being in "good shape."  One.  

Working with us will make you stronger, but it will hurt. 

We don't let you off the hook.

You don't need someone to hand you a 200 page report and then walk away.

That's what a lot of our competitors do.  

We help you build a plan and stick to it.  

Size matters.

If you're smaller than 10 employees, you'll get overwhelmed.  Honestly, you should probably look for a great I.T. company, not a Virtual CISO. 

If you're larger than 300 employees, it's probably time to start thinking about your own full-time CISO.

Compliance can be a little silly.

We get it -- a client or auditor is telling you to be compliant with regulations like SEC, NYDFS, HIPAA, CMMC, FINRA, NIST, CIS, SOC2, ISO27001... the list goes on and on.  

We'll help you make sense of any of these, and figure out where they overlap and where they're different.

Zero tolerance for jerks.  

Life's too short to work with jerks.  We only work with clients who feel the same.

If you like to beat up your vendors, please move along.  

We're looking for long-term partners.  

It can be scary.

There are a staggering number of ways that a hacker can break in.  And it only takes one mistake.

Our job is to open your eyes and then make it easier for you to sleep better at night, knowing that your biggest risks are addressed.  

Who we work with today

RIAs / Investment Advisors

We set you up with everything you need to get ready for an SEC or state cybersecurity audit.
Learn More

MSPs / IT Providers

We make you look really, really good with your security-minded customers.
Learn More

CMMC / US DoD Contractors

We make sure you keep getting government contracts that require CMMC.
Learn More

SOC 2 Audit Preparation

We help you prepare the processes, tools, and documents needed to pass a SOC 2 audit.
Learn More

Healthcare Companies / Vendors

We help with the more technical and difficult aspects of HIPAA compliance. 
Learn More

Don't fit in one of these categories?

All companies need to focus on cybersecurity since hackers don't care about your industry.
Learn More
(slightly exaggerated)

Former Client Testimonial

These guys suck!  First they made me change my password, even though "password123" was super easy to remember. 
Then they told me I couldn't use Adobe Acrobat 2003 anymore, even though I've always used it.  
And they keep NAGGING me!  Every month it's something else I have to do.  
I got so annoyed I accidentally changed myself to a potato in Zoom and can't figure out how to change back. 

Irwin D'iot

Former CEO, currently under house arrest 

No really, here's what our clients actually think...

"Adelia Risk is exactly what I needed for my business, I’m in healthcare and protecting PHI is critical. We weren't sure we were set up properly. Adelia Risk made it so we don't have to worry. They took care of our email security, made sure our computers were set up the right way, and even took the time to train our staff on how to be safe, secure, and HIPAA-compliant."

Mark Lescault, 
Grace Barker Health

"Working with Adelia Risk provides peace of mind. I sleep better at night knowing that our client data is being protected. Josh and his team are responsive, highly knowledgeable and helpful. 

They take complicated topics and make them understandable. We love working with Adelia Risk!"

Stacey Sternberg,
Parsons Capital Management

"Before we hired Adelia, I thought our IT people (me) had the cybersecurity thing covered. 'We' were wrong. 

Josh and his team helped us find the gaps, close the gaps and document everything so we're as buttoned up as we need to be for our clients and the SEC."

W. Ben Utley
Physician Family Financial Advisors, Inc.

"Like most investment advisors, I wanted to worry less and prepare for our next audit. Other vendors offered confusing "one size fits all" solutions. Since working with Adelia, we've built a policy that we understand and can achieve! We passed our most recent audit with flying colors."

Charlie Jackson,
Jackson Money Management

"We are very satisfied with the quality of product and exceptional customer service.

We have a high level of confidence in our ability to protect PHI because Adelia Risk properly set up our HIPAA compliant email."

Brenda Falls,
Barrier Islands Free Medical Clinic

"I chose Adelia Risk because I understood that they would guide me through a process, not simply provide tools for me to learn and use.

I was not disappointed!"

Seth Jentner,
Jentner Wealth Management

Our Virtual CISO Program Strategy

Typical Client Experience with
an Adelia Risk Virtual CISO

first month of virtual ciso


Here's what you typically get in your first month of working with Adelia:

Kickoff meeting with our team
Your first phishing test
Your first employee cybersecurity training
Your first vulnerability scan


Your cybersecurity program starts to fall into place: 

Deep security review of Microsoft or Google
Detailed security regulation gap analysis
Prioritized security project plan
Standing meetings to review cybersecurity priorities
second and third month of virtual ciso
virtual ciso marathon not sprint


As we work together, we'll get you what you need to pass audits.

Information security policies and procedures
Quarterly cybersecurity reports
Annual risk assessments
Cybersecurity briefings with your executives/board 
Unlimited Email Support from our team

Maybe you need more from a Virtual CISO?
This isn't a one-size-fits-all deal.

Some Virtual CISOs will offer the same program to everyone. And sometimes, that program is overkill. 

We don't do that. 

We'll help you decide if and when any of these additional solutions are needed, and quotes will be provided as required:
  • Tabletop exercises
  • Penetration testing
  • 24x7 Computer Monitoring
  • 24x7 Cloud Monitoring
  • Audit Support
  • Gap Analysis against Other Regulations
  • Custom Training
  • Fully Transparent Secure Email
  • Disaster Recovery testing
  • Firewall security reviews
  • Website security reviews and monitoring

So we didn't scare you off...

You're brave. And hopefully not stuck as a potato in Zoom.

If you're comfortable with all of this, then let's talk. Maybe we're a good fit for each other. Only one way to find out!

Virtual CISO - Frequently asked questions

What is a Virtual CISO?

In large organizations, the Chief Information Security Officer, or CISO, is the guru of all things information security. 

They make sure that your cybersecurity goals line up with your business strategy.  They present to board members about cybersecurity. They manage oversight, and figure out what's missing.

Large organizations have had CISOs for years. Small and medium-sized businesses (SMBs) are realizing that virtual CISOs can help them too. 

It's kind of like hiring a marketing agency or a fractional CFO. vCISO services hit the ground running. 

You get industry experience without the cost of very high-priced FTE.

What makes you different?

Here's what our vCISO clients say:

1) Our plans are "right-sized" for businesses with 10-300 employees.  Our competitors can charge tens of thousands of dollars per quarter.  

2) No long-term contracts.  Life is too short to work with unhappy clients.  Cancel anytime with 30 days notice.

3) No extra services.  Our prices already include tools that other vCISO firms make you buy separately.

4) We're not boring.  Information security people can be awfully dry.  Not us.  

What does the Virtual CISO service cost?

Eleventy-billion dollars.

Just kidding - our price varies based on the size and complexity of your organization and the urgency of the project. It's tough to quote a price without having a conversation first, even if it's just an email conversation.  Fill out the form above to start the conversation.  

I have fewer than 10 employees - can you help me?


We do have some clients smaller than 10 employees.  The ones who get value out of working with us already have a relationship with a good I.T. firm, and they want our help making sure that they're doing everything they should.  
We help over 100 of the best financial services, healthcare, and manufacturing companies across the U.S. with their cybersecurity.
Copyright 2023 Adelia Associates, LLC | All Rights Reserved