Jeffrey Torrance

Jeffrey Torrance

Jeffrey Torrance is AVP of the Virtual CISO practice with Compass IT Compliance. In this role, Jeffrey works with clients across all vertical markets to help them assess their information security programs and cyber-security initiatives in order to identify potential weaknesses and build a plan to help them mitigate their risks. Prior to joining Compass IT Compliance, Jeffrey served for 8 years as an Intelligence Specialist in the United States Navy where he made multiple deployments to the African, European, and Pacific theaters.

Posts by Jeffrey Torrance

How Can I Hire a Virtual CISO For My Business?

by Jeffrey Torrance on February 4, 2025 at 3:15 PM

How Can I Hire a Virtual CISO For My Business?

As cybersecurity threats continue to evolve, businesses—especially small and mid-sized enterprises (SMEs)—are increasingly recognizing the need for strong security leadership. However, hiring a full-time Chief Information Security Officer (CISO) may not always be feasible due to budge …

Read Story

Topics: Compliance Cybersecurity Virtual CISO

Leveraging a Virtual CISO (vCISO) for SOC 2 Compliance

by Jeffrey Torrance on January 10, 2025 at 1:00 PM

Leveraging Virtual CISO for SOC 2 Compliance

In the rapidly evolving landscape of cybersecurity and data privacy, achieving and maintaining compliance with industry standards like SOC 2 is critical for businesses of all sizes. However, this process can be daunting, especially for organizations lacking the internal expertise or r …

Read Story

Topics: Compliance SOC 2 Virtual CISO

Is a Cybersecurity Degree Worth It? Considering Pros & Cons

by Jeffrey Torrance on July 5, 2024 at 11:30 AM

Cybersecurity Degree

The modern era has brought with it a heightened need for cybersecurity professionals to protect sensitive data and systems. With cyber threats constantly evolving, the demand for skilled cybersecurity experts is at an all-time high. This brings us to an important question: Is a cybers …

Read Story

Topics: Cybersecurity Higher Education

What Is a Whaling Attack? (With Examples)

by Jeffrey Torrance on April 25, 2024 at 5:21 PM

Whaling Attack

Cybercriminals deploy a wide variety of techniques to target both individuals and organizations, aiming to extract sensitive information. With numerous social engineering strategies at play, many are curious to know, "what is whale phishing?" Whaling attacks, often referred to as CEO …

Read Story

Topics: Security Awareness Training Social Engineering Phishing

Making Sense of Data Management

by Jeffrey Torrance on February 9, 2023 at 2:45 PM

Data Management

Organizations face a prevalence of both internal and external cyber threats. This makes data management one of the most critical components in an organization’s cybersecurity program. From classifying data, to ensuring it is handled with the appropriate security precautions, to ensuri …

Read Story

Topics: Compliance Cybersecurity

Weighing Your Multi-Factor Authentication Options

by Jeffrey Torrance on April 14, 2022 at 2:30 AM

An old metal and wood scale

At this point most of us have heard that securing our accounts with only passwords, no matter how complex, is not enough. Do not get me wrong, requiring strong passwords (14 or more characters, composed of uppercase and lowercase letters, and including symbols and numbers) is essentia …

Read Story

Topics: Security Awareness Training Policies and Procedures Cybersecurity Social Engineering Phishing
1 2

See all

See all

Subscribe by email