Services

Our Security Services

Management consultation and advisory

Customers can profit from learning about their organization’s cybersecurity and resiliency stance. We don’t just analyze your IT operations and infrastructure but your company as a whole data driven organization. Based on our findings we can help to build your own cyber security plan.

Data Protection

Compliance

Depending on your mandatory or voluntary compliance needs, we can help you to step into the world of ISO 27001 and 27701, NZPA, GDPR and so on.

Security awareness training

Security awareness trainings

Company trainings can be mandatory and boring. We can even help with the mandatory ones, making them entertaining and motivating. The goal is to change the action of your employees. It does not happen overnight, but can happen in a few months.

Cyber Security, Virtual CISO

Virtual CISO

vCISO can provide the same level of cyber security services as a fully employed CISO on a very different cost structure and level.
A vCISO can be paid on either Time & Material basis or on a fixed fee monthly cost.

Learn more
security & Compliance - keyboard with a lock on it

Data Protection

Data protection services with NZPA and GDPR focus. Do you have business with NZ or EU citizens? Then, you must think about the personal and company data protection issues and challenges.

Learn more

Why Virtual CISO?

 

 

vCISO can provide the same level of cyber security services as a fully employed CISO on a very different cost structure and level. A vCISO can be paid on either Time  & Material basis or on a fixed fee monthly cost.

A vCISO is a security single point-of-contact for all security related issues of the organization, offering a direct line to experts as needed. A virtual CISO can respond to incidents, answer security-related questionnaires for your customers, and respond to data breach in case of that. In addition to ongoing and ad hoc support, a vCISO can participate in company meetings when security expertise and guidance are needed.

vCISO support includes:

Data Classification
Data Loss Prevention/Plan Implementation
Information Risk Reviews and Risk Management
Security Architecture Design and Policy Development
Security Program Design
Security Awareness Training
Vulnerability Management Monitoring
Security Standards audit preparation (ISO 27001, NIST, SOC)
Audit Remediation and Audit Management
Vendor Contracts and Risk Management
Privacy Program Planning and Implementation
Identity and Access Management
Bring Your Own Device (BYOD) Strategy and Policy Design

Cyber Security, Virtual CISO
Data Protection

Data Protection

 

 

Data protection services with NZPA and GDPR focus. Do you have business with NZ or EU citizens? Then, you must think about the personal and company data protection issues and challenges.

It is your responsibility, and the authorities are ready to collect easy money from careless entrepreneurs. Torotoro can help you to fix the situation based on Torotoro’s European and New Zealand practices. We can prepare your organization to be  compliant with these regulations and avoid unnecessary costs. The GDPR compliant status has a very positive impact on the trust and business of your customers.

In some cases, the European Union GDPR regulation requires the establishment of a Data Protection Officer or DPO. It requires the thorough understanding of GDPR, which is not needed every day in Aotearoa. To have someone to do it, can be a big headache for kiwi businesses as there are not many present. Torotoro can provide a virtual or on-demand version of it, called vDPO.

In addition, Torotoro can help with other data protection regulations like Saudi Arabia or various USA states, in the form of consultancy and advisory.