Call (833) VCISOSV (833-824-7678) to schedule a no cost, no obligation consultation with a virtual CISO cyber security expert.

vCISO Services, LLC News

An Answer for Cybersecurity Cost Exposure


FRANKLIN, Tenn., Sept. 4, 2019 /PRNewswire/ -- To assist small and midsized businesses make risk-based decisions based on cybersecurity cost exposure, information security consulting firm vCISO Services, LLC announced today the immediate availability of their licensed quantitative information risk assessment offering based on The Open Group Open FAIR™ Body of Knowledge.

"We beta-tested Open FAIR, and immediately realized the business value for our clients," vCISO Services, LLC principal Greg Schaffer said. "Our Open FAIR certified resources leverage Open FAIR's Risk Analysis Tool to help companies prioritize cybersecurity resources based on real cost exposure and not a color scheme representation of opinion."

The Factor Analysis of Information Risk, or FAIR, uses known cost and historical data to provide executive management and board of directors with meaningful cost exposure ranges. "As a CISO, I created FAIR so that I could help my executive stakeholders make better decisions. The improvements in our ability to prioritize and communicate were beyond anything I had anticipated," said Jack Jones, the developer of FAIR.

"We are pleased to have vCISO join the ranks of commercial licensees of Open FAIR, and to also join the Security Forum to contribute to the ongoing development of our standards and best practices," said Jim Hietala, VP, Business Development and Security at The Open Group. The Open Group maintains a list of commercial Open FAIR licenses at

Traditionally, information risk assessments have been qualitative in nature, relying solely on the opinions of experts whether a risk is high, medium, or low, often displayed as red, yellow, and green "heat maps." Such subjective assessments cannot provide accurate insight into information risk exposure.  vCISO Services, LLC offers FAIR-based quantitative information risk assessments both as standalone projects and as part of their Gold and Diamond Virtual CISO packages.

About vCISO Services, LLC

Franklin, Tennessee based vCISO Services, LLC is a leading provider of experienced virtual Chief Information Security Officer (vCISO) and information security risk management services for small and midsized businesses. Veteran-owned and with clients from coast to coast, our goal is to help small and midsized businesses improve their information security by providing quality virtual CISOs at a fraction of the cost of hiring a full-time CISO. More information is available at

About the Open Group

The Open Group is a global consortium that enables the achievement of business objectives through technology standards. Our diverse membership of more than 700 organizations includes customers, systems and solutions suppliers, tool vendors, integrators, academics, and consultants across multiple industries. Further information on The Open Group can be found at 

vCISO Services, LLC Featured by Security Current

Operating a small or medium sized business is hard enough without the burden of dealing with cyber security.  As it turns out, the majority of small and medium sized business (SMB) leaders don’t believe that they have much to fear from cyber threats.  In this environment, Greg Schaffer decided that he needed to do something.  In 2017, he founded and is the Principal at vCISO Services, LLC,  a small company dedicated to providing SMBs with the information security expertise only accessible to large enterprises.

Read more in Security Scrrent's spotlight on vCISO Services, LLC Principal Greg Schaffer at 

vCISO Services, LLC Launches Information Security Scholarship Program


Middle Tennessee State University Chosen as First Partner

FRANKLIN, Tenn., Feb. 12, 2019 /PRNewswire/ -- vCISO Services, LLC, an executive information security consulting firm, today announced the launch of the vCISO Services, LLC Information Security Scholarship Program to assist higher education students pursuing a career in information security. The Jennings A. Jones College of Business at Middle Tennessee State University (MTSU) was chosen as the first partner in the program.

"MTSU is a natural choice to pilot this program," explained Greg Schaffer, Principal of vCISO Services, LLC. "I worked at MTSU for many years in IT and information security, and during that time I also earned my master's degree in Information Systems from the Jones College. I've experienced firsthand their first-class programs, instructors, and infrastructure."

"vCISO Services' generosity is greatly appreciated as many of our students have financial needs and there are not many scholarships in the area of information security," said Tim Greer, Interim Chair of the Information Systems and Analytics department. "The recipient of this scholarship not only receives a monetary award, but also the opportunity to be mentored by one of the top information security professionals.  This is invaluable for someone starting out in information security."

"The need for qualified information security professionals is increasing," Schaffer added. "Scholarships and financial aid helped make my education possible, so I understand how even a small amount can benefit someone's career aspirations. It's important that everyone who wants to enter the field and has the aptitude for it not be denied that opportunity because of financial need."

The annual $500 scholarship will be awarded to a current Information Systems and Analytics student who has earned at least 60 credit hours, an overall Grade Point Average of at least 3.0 in the Information Systems and Analytics major, a demonstrated financial need, and an interest in pursuing a career in information security.

About MTSU Jones College of Business

The MTSU Jones College of Business is a major collegiate business school having both business and accounting accreditation from AACSB International, with 3000 students (2600 undergraduate, 400 graduate), 150 full-time faculty and staff, and an operating budget exceeding $23 million. The Jones College of Business is the top producer of baccalaureate and graduate business graduates for the Greater Nashville economy.

About vCISO Services, LLC

vCISO Services, LLC provides virtual Chief Information Security Officer services to small and midsized businesses at a fraction of the cost of hiring a full-time Chief Information Security Officer. All virtual CISOs have served at least five years as an information security senior executive, providing clients the assurance that their information security program is directed by those with significant, relevant, and deep experience. For more information, visit

vCISO Services, LLC Sponsors Nashville Technology Council's First Veterans Peer Group Meeting


On January 26, 2018, the Nashville Technology Council will host its inaugural panel discussion of a new veterans peer group. The group is intended for veterans and those who want to learn more about veterans issues in the tech industry.

Increasing numbers of veterans are calling Nashville home. Through this new NTC Veterans Peer Group, NTC can help to provide access to tech leaders who rally around a passion to build the future of the local tech community. The peer group came together under the leadership of Kathryn Acord and Jon Zagami from Bedroc, who both served their country in the U.S. Air Force and Army, respectively.

More at

vCISO Services, LLC Joins Tennessee Bankers Association


Franklin, TN, October 09, 2017 --( vCISO Services, LLC, an information security executive consulting company, has joined the Tennessee Bankers Association (TBA) as an associate member to provide resources for Tennessee financial institutions looking to strengthen their information security programs.

“One of our major focuses from day one has been banks, particularly community institutions,” explained Greg Schaffer, CEO of vCISO Services, LLC. “Our team’s extensive experiences as CISOs for small to midsize banks are a valuable resource to community institutions struggling to find quality information security executive expertise at a reasonable cost. As we are headquartered in Franklin, Tennessee, joining TBA is a natural next step in an evolving journey.” 

More at

vCISO Services, LLC Launches to Help Secure Small and Midsized Businesses

FRANKLIN, Tenn., Sept. 1, 2017 /PRNewswire/ -- To combat the growing threat of cyber-attacks to small and medium sized businesses, vCISO Services, LLC began operations today to provide part-time seasoned executive information security expertise to organizations who cannot afford a full-time Chief Information Security Officer (CISO) at a fraction of the cost through its CISO as a Service (CaaS) products.

"There is a growing rift between the security officer 'haves' and 'have nots,'" explained vCISO Services, LLC CEO Greg Schaffer. "The bad guys know that too. We increasingly see cyber criminals targeting smaller businesses because they know their information security programs are not as robust as the big companies are. We are simply trying to do our part to level the playing field."  

More at