Hypothetically, if my friend wanted to move from being a CISO at a large company to a consultant, what is the best way to go about it?
Hypothetically, if my friend wanted to move from being a CISO at a large company to a consultant, what is the best way to go about it?
@jerry@infosec.exchange So your ’friend’… I’d start off at a reputable consultancy firm and go from there.
I’d done it for years and CISO, CTO etc. is highly sought after for vCTO, vCISO services, but also the wider skill set as it applies to projects and transition/transformation work.
After that, it should be relatively easy to distance yourself from the firm, but many stayed on books as our consultants, for a slightly higher rate, while doing their own thing.
I know one guy took two or three large contracts a year in locations he wanted to go on vacation to, he basically lived out of his suitcase and lived the ‘gap year’ life while acting as one of our international consultants.