Select an engagement tier to load the default project scope, toggle projects on or off, adjust hours per month, and get an instant quoted rate. Baseline hours are based on ISO27001:2022 program.
Client Info
— Select or create client —
Tier 1 · Overseer
Governance Chair
Joins the governance committee as chair. Provides strategic oversight and executive-level security voice. No day-to-day program ownership — ideal when internal staff handles operations.
~2 hrs/mo
Tier 2-Lite · Advisor
Compliance Advisor
Attends key meetings as an expert advisory voice, reviews policies and procedures, identifies compliance gaps, and coaches internal staff — without owning the program day-to-day.
~5 hrs/mo
Tier 2 · Leader
Compliance & Risk Program Lead
Leads a compliance framework (CMMC, HIPAA, SOC 2, etc.), manages the risk register, runs access reviews, oversees remediation, and delivers executive reporting.
~15 hrs/mo
Tier 3 · Owner
Full Security Program Owner
Owns the entire security program end-to-end — governance, technical controls, compliance, incident response, vendor risk, DR/BCP, monitoring, and board reporting.
~35+ hrs/mo
⚡ Hours Exceeded Tier Baseline — Your selected scope totals more hours than typical for this tier. Consider upgrading to the next tier or removing lower-priority projects.
