What we do
Viridus Security = Common sense governance, risk & compliance for growth stage startups.
There comes a point for startups when proving security is necessary for closing deals.
Automated compliance tools help, but there are plenty of decisions to make along the way:
1. How much time can I take away from core work?
2. What tools do I absolutely need immediately and which can wait (ticketing, IAM, HR, SDLC, etc)?
3. Which controls don’t apply to my business, and how to do I convey that to the auditor?
4. What kind of penetration testing makes sense?
5. How the heck do I run and document a tabletop exercise?
We help growth stage companies get or maintain certification against existing frameworks to reduce sales cycle friction. Schedule a free consultation on certification, tooling, time needed, costs, etc. https://calendly.com/viridissecurity/review-my-security-and-compliance-efforts
Whether you need ground up creation of policies, controls, processes and procedure or if already have a great program and are looking for CISO advice without hiring a full-time resource, we can help.
Virtual CISO (vCISO)
Continuous Compliance Management support or implementation:
* Drata
* Vanta
* Sprinto
* Secureframe https://partner.secureframe.com/viridis-security
* Cloud Trust
Security Implementation advice and guidance:
* Vendor (3rd Party) Assurance programs
* Document management
* Asset Management
* Application Management
* Risk Management
* IAM Identity Access Management
* Information Security outreach, training
* SDLC Security
Frameworks examples:
* SOC2
* GDPR
* PCI
* ISO27001
* HIPAA