The web application provides a free score, prescriptive next steps, tools, and resources to help you make progress on your cyber security program at your own pace.
CISOSHARE’s team of cyber security experts today announced the launch of Cyber Progress Index (CPI), an index and web application that presents a paradigm shift in how organizations address cyber security. Unlike other cyber security scoring and maturity methods that use risk as the primary measurement scale and base of the effort, CPI instead focuses on measuring and improving the capability of an organization’s security program to progress.
Using a progress-based approach results in a more secure, and best practice-aligned security program derived from more informed decision making by organization stakeholders. This score is completely confidential to the receiving organization. Scores are designed to help organizations improve their security programs at their own pace.
“The majority of organizations are dramatically increasing what they spend on security, but are simply not getting the results their owners, boards, or stakeholders would like or expect. We believe this is directly attributed to a focus on risk reduction and management,” says Mike Gentile, founder of Cyber Progress Index. “In a perfect world, modern security risk management approaches would work as the core of any security effort. But we don’t live in a perfect world.”
Organizations need to define security with effective governance, policies, and documentation. CPI is meant to address this need, as well as the shortage of resources needed to perform appropriate risk management activities and communicate effectively with organizational stakeholders.
“The lack of communication results in bad information, bad decisions, and the unrelenting cyber attacks we are all seeing every day, even in environments that are certified with well-known security certification programs,” says Gentile.
The CPI approach focuses on how people make decisions, starting with how information is presented to them, the scope of that data, what they need to understand it, as well as how a decision is implemented once made.
“When you look at security with decision-making in mind, you reduce the skill-set needed to implement security. The costs go down, and you enable improvement by anyone who wants to take it on,” says Gentile.
Cyber Progress Index works by establishing an initial score that measures how well an organization defines security, measures that definition, presents discovery information to stakeholders to make decisions, and then how those decisions are implemented.
Once the initial score is established, CPI then provides an ecosystem of tools, support, as well as do-it-yourself and validation services so users can better understand how to enhance and speed up their progress over time. Users can access comprehensive guides that also provide simple steps to build the documentation and program components they need.
Organizations can also receive support from CPI’s security experts through the application’s validation services. The CPI team reviews any existing or new security program documentation and provides detailed feedback on what they’re doing right to enhance progress and what still needs to be considered.
“We firmly believe that improving an organization’s ability to make cyber security decisions improves their ability to both manage cyber security and essentially lower risk more than simply focusing on risk reduction alone,” says Gentile. “The faster your organization can make and implement well-informed decisions, the more progress will accelerate and the more prepared your organization will be.”
About Cyber Progress Index
Cyber Progress Index is a SaaS based service organization located in San Clemente, California that is wholly owned by CISOSHARE. It offers a free cyber progress score for any organization, as well as a suite of progress-based subscription services. Start making progress now at cyberprogressindex.com
Based in Southern California, CISOSHARE is the leading provider of security program development professional and managed services for leading organizations around the world. We have served hundreds of organizations from supplying dedicated security leaders on demand to the development of world-class security programs from the ground up. Find more at cisoshare.com
May 9, 2018
CISOSHARE Reports Growth in 2017 with Cost-Effective Cyber Security Services
Leaders say more clients demand cost-effective security programs and training that keep their organizations focused and on-track for their primary mission.
SAN CLEMENTE, Calif. – Experts in delivering comprehensive cyber and information security programs to leading brands and organizations experiencing rapid growth, CISOSHARE today announced increased revenue of 188 percent year-over-year with significant increases in client contracts attracted to its unique offering of system-based security program development services. This included significant growth in both its professional services business with the addition of well-known and recognizable clients, as well as a doubling of managed security services contracts in 2017.
“Making security efficient and repeatable through a system-based approach has been the hallmark of our research for the last 20 years and is reflected in all of our services,” said Mike Gentile, President and CEO of CISOSHARE. “We are excited to see this approach resonate with clients as we believe it is the best way to combat the current security landscape of never-ending workloads and limited skilled resources to do an ever-increasing amount of work.”
Based in Southern California, but serving organizations globally, the CISOSHARE approach to security program development gives leaders the foundational platform, tools, and knowledge to manage cyber security while establishing policies, protocols and training that inform their business without hindering operations.
“We’ve increased our client base through a simple partnership and service model,” said Ryan Vallone, VP of Sales and Marketing at CISOSHARE. “We listen intently to our clients’ needs and match solutions to their teams in ways that allow them to remain focused on growth and realizing their vision.”
CISOSHARE’s diverse client list includes companies and organizations in state and local government, financial services, health care and other markets—all responsive to the value-based, cost-effective and tailor-made approach CISOSHARE offers.
With a growing workforce of cyber and information security experts, CISOSHARE employees are highly skilled at delivering a flexible model of system-based services packaged in a time-sensitive learning and teaching environment. This approach enables CISOSHARE experts and client partners to operate with big-picture principles and platforms top-of-mind.
CISOSHARE is a private, Southern California-based information security services company that provides organizations with dedicated security leaders who deliver secure solutions and training tailored to clients’ needs. Find more at cisoshare.com.
March 1, 2018
CISOSHARE President and CEO, Mike Gentile, will be presenting at an upcoming Information Systems Security Association (ISSA) gathering in Orange County. Gentile will be presenting “Big Bounce Theory: The Next Round of Security Program Development for Security Leaders.”
The topics he wants to discuss include moving back to prescriptive-based decision management, the use of technology in automating key steps, and the use of unskilled over skilled resources in security.
“Some of these ideas may be controversial,” Gentile says. “But I welcome discussion and debate.”
Mike Gentile has been on the forefront of the information security space for over 20 years. He holds patents in the security management domain, and is a co-author of The CISO Handbook, which is often used as course material for advanced educational programs on security leadership around the world.
As a researcher, Gentile’s goal has been to help organizations make informed security decisions. He has contributed to numerous publications and has delivered more than 100 presentations within the topics of security program development, information technology, and security communities.
Gentile has been a top-rated speaker at RSA Conference, and has been a keynote speaker for the CXO Summits conference series. He has also delivered presentations at Secure World Expo, previous ISSA events, CRN, and many others.
ISSA is dedicated to promoting practices that ensure confidentiality, integrity, and availability of organizational information resources with chapters around the world. Their members include information security leaders from U.S. and international corporations, leading consulting firms, educational institutions, and government agencies.
CISOSHARE is a private, Southern California-based information security services company that provides organizations with dedicated security leaders who deliver secure solutions and training tailored to clients’ needs. Find out more at https://www.cisoshare.com
April 13, 2018