Our Chief Information Security Officer-as-a-Service (CISOaaS) provides access to the skills needed to respond to today's threats and prepare for tomorrow's threats.
Every company has different conditions and resources, our "CISO a la carte®" is flexible and offers you a service - tailored to the customer. Our security expert reliably assumes the function of CISO or information security officer in the short or long term with a noticeable effect on the organization.
01
Assess your information security burden
Review your own needs and those of your stakeholders, consider the needs of your customers, your organization and your budget, determine if you need a full-time or part-time solution for the Information Security Officer role and determine the duration of the “CISO a la Carte” service.
02
Arrange a consultation with us
We meet simply and easily online for 30 minutes to get to know each other and discuss your current status of information security and your needs. After that, we will clearly and transparently show you the way to your own CISO as a Service, which ever is standardized by situation or fits your size, cost structure and needs, we call it CISO al la carte.
03
Know and choose the appropriate option
You can choose either a standardized offer or a CISO a la carte tailored to your needs and we will implement the desired solution.
04
Enjoy your improved information security
Achieve a new level with our service, benefit from the knowledge, experience and services of the CISO à la carte, and take on new tasks and customers with high information security requirements. You can make more informed decisions about your next steps towards even better information security.
Ich hatte das Vergnügen, mit Opexa Advisory zusammenzuarbeiten; Thomas Salvador ist ein sehr scharfsinniger und angenehmer Arbeitskollege/Berater. Er versteht es, komplexe Probleme strukturiert und nachvollziehbar aufzuschlüsseln. Auch in politischen und persönlichen Fragen war er eine große Hilfe. 5 Sterne für herausragende Professionalität und Integrität.
Roman Dietrich, Bayerische Motoren Werke AG
Sehr engagiert, hochprofessionell, immer teamorientiert, überdurchschnittlich erfolgreich und extrem schnell!
Josef Schriek, Wonder Automotive Europe
Mit der Unterstützung durch Opexa und dank des ISMS SmartKit haben wir den Schritt zur TISAX® Zertifizierung erfolgreich geschafft.
In einem akzeptablen Zeitraum konnten wir ein ISMS entwickeln, welches nicht nur die Normanforderungen erfüllt sondern auch unsere Arbeitsweisen als UX Agentur berücksichtigt.
Die Zusammenarbeit mit Herrn Kilvinger wurde in unserem Team stets als proaktiv, freundlich und kundenorientiert wahrgenommen. Weiterhin war die Begleitung während des Prozesses und im Audit eine große Unterstützung für uns.
Tabea Daunus, uintent GmbH
What our clients have to say
Common Questions around CISO a la carte®
What is the minimum number of performance days?
The minimum contract volume for our CISO a la carte is 2 days per month for 6 months, only then is our expert integrated and available, not just staying on the surface and able to carry out his role and perform his duties appropriately.
In this context, the role of CISO a la carte can be used as a temporary bridge in the event of a change in personnel, in a goal-oriented manner for planned audits, or exercised on a long-term basis.
Do we always have different consultants in-house?
No, we rely on personal stability and knowledge gained about the customer organization as well as trust between those involved, which is not easy to achieve with constant changes. This allows the CISO role to have the best possible impact. In the event of necessary changes, failures or during the holiday period, we will take care of a replacement and an appropriate handover and training.
Why should we use a part-time solution?
Oftentimes, access to the right features at the right time is simply what is needed. In addition, the CISO position in medium-sized companies is often not a full-time job, with a CISO à la carte you can benefit from our speed of reaction, flexibility, lower costs (compared to a Full-time position) and benefit from knowledge. And: You save yourself the tedious search on the job market!
Which staff with which qualifications will take on the tasks?
Our consultants are experienced in cyber security, standards (ISO 27001, TISAX®, ISO 21434, etc.), hold certificates, have practical knowledge and bring their personality and our mantra to your company: Democratizing Information Security.