Get Started
Carlota Sage, vCISO Principal

Carlota Sage, CISSP

Carlota Sage was a Virtual CISO Principal at Fractional CISO from 2021-2022. Carlota helps organizations build and implement cybersecurity programs. Carlota has a background in knowledge and program management, and has helped companies including Netflix, Facebook, and FireEye to build and refine their end-user help, service systems, and knowledge bases. Carlota has a masters degree in Information and Knowledge Strategy from Columbia University

Insights from Carlota Sage

Mazda Miata ND RF

Applying Mazda’s “Gram Strategy” to Cybersecurity and Risk Management

Imagine being sixteen years old, gassing up your mothers old Chevy Cavalier and seeing a sleek smurf-blue roadster zip past

Business Continuity Plan

When your Business Continuity/Disaster Recovery Plan is a Disaster…

Picture it:  As a part of your new job running a corporate SOC 2 compliance program, you’ve started the arduous

Chicken or the Egg?

Security’s Chicken and Egg: Operationalizing the Security Maturity Model

It’s a classic case of the chicken and the egg:  How do I justify the cost of security tooling when

Communication Breakdown

Communicate Better with the Organizational Security Maturity Model

Use the Organizational Security Maturity Model as a guide for meaningful discussions with your executive team and Board of Directors.

From Dirty Laundry to Cleaning up Your Security Program: How I became a vCISO

“People don’t leave a company, they leave their manager.”  So what does it mean that I quit working for myself

Is your Cyber Insurance really going to cover you?

Only 1/3 of cyber insurance policies actually pay out in incidents. Most companies have cyber insurance policies that insure too little, or too much, and have absurdly low caps and silly exclusions.

To learn more about cyber insurance and determine if you have the right coverage for you, join us for a free vCISO Office Hours session on Tuesday, April 18 at 1 p.m. eastern time. Bring your questions!

New Release: Free SOC 2 eBook!

Getting ready for your first SOC 2? This eBook is full of actionable advice to help you prepare for and succeed in your first SOC 2 audit.

Learn:

  • How to scope your SOC 2 project
  • How to estimate the cost and length of your SOC 2 project
  • How to prepare for your SOC 2
  • How to succeed in your SOC 2 audit period
  • How to leverage your SOC 2 report to enable your business and sales
Is your Cyber Insurance really going to cover you?

Only 1/3 of cyber insurance policies actually pay out in incidents. Most companies have cyber insurance policies that insure too little, or too much, and have absurdly low caps and silly exclusions.

To learn more about cyber insurance and determine if you have the right coverage for you, join us for a free vCISO Office Hours session on Tuesday, April 18 at 1 p.m. eastern time. Bring your questions!

New Release: Free SOC 2 eBook!

Getting ready for your first SOC 2? This eBook is full of actionable advice to help you prepare for and succeed in your first SOC 2 audit.

Learn:

  • How to scope your SOC 2 project
  • How to estimate the cost and length of your SOC 2 project
  • How to prepare for your SOC 2
  • How to succeed in your SOC 2 audit period
  • How to leverage your SOC 2 report to enable your business and sales