OFFER 3
Optional
1–2 hours per week of executive engagement
Monthly leadership cadence
Continuous risk and roadmap management
Monthly Activities
Executive security briefing (threat landscape, program updates, risk changes)
Security readmap progress review and adjustment
Vendor security review and approval
Policy and procedure updates
Incident response oversight (if incidents occur)
Budget planning and optimization
Quarterly Deliverables
Board-level security report
Risk register updates
Compliance status report
Security metrics trending analysis
Annual Deliverables
Comprehensive security program assessment
Updated multi-year strategic roadmap
Tabletop incident response exercise facilitation
Budget recommendations for next fiscal year