T1 Services logo
T1 Services t1services.us

Cybersecurity Leadership for Organizations That Need Clarity

T1 Services provides vCISO and cyber risk (GRC) leadership for small and mid-sized businesses. We translate cybersecurity into business decisions, risk registers, prioritized roadmaps, vendor oversight, and executive ready reporting without the cost of a full time CISO.

Request a Consultation (410) 921-5910

What We Do

We focus on governance, risk, and executive level security leadership. We do not sell tools or tickets, we help leadership make defensible decisions and keep the organization security program current.

Service Offerings and Pricing

Predictable, flat-rate pricing with clearly defined scope and full transparency.

Risk Register + Roadmap
Baseline, risk register, and an actionable plan

Cyber Risk Assessment + Risk Register Starting at $5,000 one-time

A business-impact-based risk register and executive-ready priorities.

  • Discovery: business context, crown-jewel systems, and key workflows
  • Risk register (likelihood × impact) + risk heat map
  • Risk treatment plan: mitigate / transfer / accept / avoid
  • Executive readout with decisions required

90-Day Stabilization Plan + 12-Month Roadmap

A practical plan your IT team, MSP, or vendors can execute with clear priorities.

  • Top risks mapped to concrete actions and owners
  • Quick wins to reduce exposure fast
  • Budget-aware sequencing (what matters first)
Security roadmap
vCISO / Cyber Risk Leadership (Retainer)
Ongoing executive oversight, reporting, and accountability

Advisory vCISO $2,500/mo

Lightweight leadership for organizations that need direction and clarity.

  • Monthly executive advisory call
  • Roadmap guidance and priority setting
  • High-level risk register maintenance
  • Vendor/MSP oversight (review and accountability)

Core vCISO (Most Popular) $4,500/mo

Ongoing ownership of the security program with measurable progress.

  • Risk register ownership + risk treatment tracking
  • Policy and governance framework (NIST/ISO aligned)
  • Quarterly executive report (KPIs, risk, progress)
  • Security questionnaires and vendor due diligence support
  • Annual incident tabletop exercise
Executive business review and reporting

Executive / Board vCISO $10,000/mo

For organizations with board expectations, investors, or high regulatory pressure.

  • Board / investor-facing reporting and briefings
  • Security budget planning and justification
  • Priority access and incident decision support
  • Mergers and Acquisitions / due diligence security reviews (as needed)

Scope is advisory and governance-focused. Day-to-day IT operations, monitoring, and remediation execution remain with your team, MSP, or vendors.

GRC & Compliance Readiness (Advisory)
Control mapping, evidence guidance, and audit preparation support

Compliance Readiness (SOC 2 / HIPAA / ISO / NIST) Starting at $7,500 per project

Advisory support to reduce audit surprises and align controls to risk.

  • Gap analysis and control mapping
  • Evidence guidance (what to collect and how)
  • Policy set and exception/waiver process
  • Executive readiness review before audit or customer due diligence

Vendor & Third-Party Risk Oversight $2,500/mo

Reduce risk from vendors and prove due diligence to customers and insurers.

  • Questionnaire review and risk scoring
  • Contract/security clause guidance (advisory)
  • Risk acceptance recommendations to leadership
  • Ongoing tracking for critical vendors

Incident Tabletop Exercise $3,500

Practice executive decision-making under pressure and improve readiness.

  • Custom scenario and facilitated session
  • After-action report and prioritized improvements
  • Updates to response plan and communication checklist
Executive business review and reporting

What You Receive

Clear, decision-ready deliverables leadership can act on. Your internal team, MSP, or vendors handle day-to-day execution—T1 provides the direction, governance, and accountability.

Cyber Risk Register

A business-impact-based risk register with clear priorities, owners, and decisions required.

Roadmap & KPIs

A realistic 90-day plan and 12-month roadmap with measurable progress tracking.

Executive Reporting

Board-ready reporting that translates technical risk into business language.

Why T1 Services

T1 Services exists for leaders who want clear cybersecurity direction without hiring a full-time security team. You keep control of your accounts and data; T1 Services brings structure, priorities, and plain-English communication.

  • Executive-level security leadership (vCISO) and cyber risk management (GRC)
  • Vendor-neutral recommendations based on risk, business needs, and budget
  • Clear documentation: risk register, roadmaps, and executive-ready reporting
  • Framework-aligned guidance (NIST / ISO concepts applied pragmatically)
  • Hands-on experience across on-prem, cloud, and hybrid environments
  • Guidance that improves operations—not red tape for its own sake

Engagement Basics

  • Remote-first delivery (Maryland-based)
  • Vendor-neutral, advisory-focused
  • Clear scope + simple deliverables
  • No long-term contracts required (retainer optional)
T1 Services logo

Let’s Talk

Looking to reduce cyber risk, build a roadmap, or get executive-level security leadership? Send a few details and we’ll schedule a brief, no-cost discovery call.

Email: inquiries@t1services.us

Phone: (410) 921-5910

Website: t1services.us