• SecurePath for Auto Dealers
  • Services
    • SOC Reporting Services
      • SOC 2® Readiness Assessment
      • SOC 2® Reports
      • SOC 3® Reports
      • SOC for Cybersecurity® Reports
    • IT Advisory Services
      • IT Vulnerability Assessment
      • Network Penetration Testing
      • Privileged Access Management
      • Social Engineering Testing
      • Virtual CISO (vCISO)
      • Written Information Security Program (“WISP”)
      • IT General Controls Audit & Compliance
    • IT Government Compliance
      • CMMC Cybersecurity Services & Compliance
      • DFARS Compliance
      • FTC Safeguards Compliance
  • Industries
    • Financial Services
    • Government
    • Auto Dealerships
    • Enterprise
  • Blog
  • About Us
    • Meet The Team
    • Jobs
  • Contact Us

Call us today! 844-OCD-TECH

Find our Location
OCD TechOCD Tech
  • SecurePath for Auto Dealers
  • Services
    • SOC Reporting Services
      • SOC 2® Readiness Assessment
      • SOC 2® Reports
      • SOC 3® Reports
      • SOC for Cybersecurity® Reports
    • IT Advisory Services
      • IT Vulnerability Assessment
      • Network Penetration Testing
      • Privileged Access Management
      • Social Engineering Testing
      • Virtual CISO (vCISO)
      • Written Information Security Program (“WISP”)
      • IT General Controls Audit & Compliance
    • IT Government Compliance
      • CMMC Cybersecurity Services & Compliance
      • DFARS Compliance
      • FTC Safeguards Compliance
  • Industries
    • Financial Services
    • Government
    • Auto Dealerships
    • Enterprise
  • Blog
  • About Us
    • Meet The Team
    • Jobs
  • Contact Us

Virtual CISO Services

Home Virtual CISO (vCISO)

Protect Your Organization with a Virtual CISO

Would your organization’s information security team benefit from having an inside resource on the outside?  If you do not have a full-time CISO, hiring a Virtual CISO (vCISO) that is dedicated to navigating regulatory requirements and industry best practices, at a fraction of the cost of hiring someone full-time might be a fantastic option for your organization.  Read below to find out about our vCISO services.

Security Experts at Your Service
A Competitive Advantage

Under its “Fractional CISO” services grouping, OCD Tech offers a retainer-based approach to assisting organizations extend the capabilities of their information security team. By leveraging OCD Tech for this service, you get access to a team of experts at a cost much less than one full-time employee. We take an inclusive approach to this type of service, bundling a wide variety of services to help you secure your organization. OCD Tech’s capabilities extends organizations’ ability to address common security needs, represented by NIST’s “Five Factors”.

NIST 5 Factors of Common Security Needs

Build Your IT Security Program

Access to Our Expertise
This time can be used for whatever purpose the organization sees fit. In other engagements with this time, we have:

  • Performed information security maturity assessments
  • Helped organizations prioritize and roadmap security initiatives
  • Written policies and procedures to address gaps or regulatory concerns
  • Performed security incident triage
  • Written incident runbooks for front-line IT staff
  • Organized proof of concepts for new security tools
  • Written RFPs on behalf of our clients for things like Mobile Device Management and SIEM, among others

Policy & Procedure

Creating policies and procedures is a vital part of maintaining an effective cybersecurity program. Establishing common themes, goals, standards, and benchmarks helps to set organizations on a uniform course towards IT governance. As part of the vCISO offering, OCD Tech will help your organization create and maintain the IT security policies and procedures that govern your IT security program.

OCD Tech will assist your organization in creating a policy library utilizing any, or all, of the following methods:

Use Existing Policies

Use Policy Templates:

Creating Policies from Scratch

Maintaining Policies

Regulatory Obligations

In addition to best practice, OCD Tech will make all recommendations on your IT environment with those
regulations in mind. This includes building polices which often will be key in your compliance programs.

Common regulatory obligations include:

MA 201 CMR 17

NY SHIELD

FTC Safeguards Rule

AICPA SOC 2

ISO 27001

No matter the regulation(s) that your organization is obligated to, OCD Tech will help to create an IT security program that aligns with the requirements. When necessary, OCD Tech will help to create controls that are measurable and repeatable in support of these regulations.

Find us on

Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Send Message
OCD Tech logo Audit. Security. Assurance.

IT Audit | Cybersecurity | IT Assurance | IT Security Consultants – OCD Tech is a technology consulting firm serving the IT security and consulting needs of businesses in Boston (MA), Braintree (MA) and across New England. We primarily serve Fortune 500 companies including auto dealers, financial institutions, higher education, government contractors, and not-for-profit organizations with SOC 2 reporting, CMMC readiness, IT Security Audits, Penetration Testing and Vulnerability Assessments. We also provide dark web monitoring, DFARS compliance, and IT general controls review.

Contact Info

  • OCD Tech
  • 25 BHOP, Suite 407, Braintree MA, 02184
  • 844-623-8324
  • https://ocd-tech.com

Follow Us

Videos

Check Out the Latest Videos From OCD Tech!

Services

SOC Reporting Services
– SOC 2 ® Readiness Assessment
– SOC 2 ®
– SOC 3 ®
– SOC for Cybersecurity ®

IT Advisory Services
– IT Vulnerability Assessment
– Penetration Testing
– Privileged Access Management
– Social Engineering
– WISP
– General IT Controls Review

IT Government Compliance Services
– CMMC
– DFARS Compliance
– FTC Safeguards vCISO

Industries

  • Financial Services
  • Government
  • Enterprise
  • Auto Dealerships

© 2025 — OCD Tech: IT Audit - Cybersecurity - IT Assurance

  • OCD Tech
  • About Us
  • Contact Us