In this interview, Donna Gallaher shares her journey from a distinguished career in enterprise IT to founding New Oceans Enterprises, a thriving vCISO consultancy. She reflects on the evolution of cybersecurity, emphasizing the rising demand for independent, unbiased security evaluations and the increasing awareness of security needs among small businesses. Donna offers insights into building strong client relationships, navigating industry challenges, and the critical role of governance and communication skills in vCISO services. Her approach is rooted in adaptability, trust, and a deep commitment to helping businesses secure their future.
If you’re transitioning into a vCISO role, focus on developing your soft skills. Presentation and communication are just as important as technical knowledge. You’re selling trust, and that means being able to clearly articulate your value to boards and leadership teams.
Why Watch
- How can you transition from enterprise IT and security roles to a successful vCISO practice, and what should you consider when building your own consultancy?
- What are the key shifts in the vCISO field, including the growing impact of regulations like GDPR and CCPA, and the rise of AI governance?
- How can you build strong, long-term client relationships based on trust, and what should you look for when selecting clients?
- What strategies can help you acquire new clients, and how important are networking, thought leadership, and referrals in growing your vCISO practice?
- What are the future trends in the vCISO space, including the shift toward impartial security evaluations and the growing need for vCISOs to have expertise in corporate governance and business skills?
About Donna Gallaher
Donna Gallaher is a pioneering virtual CISO (vCISO) and President & CEO of New Oceans Enterprises, LLC, bringing over two decades of experience in cybersecurity and IT operations across multiple industries including financial services, healthcare, and technology. A recognized vCISO influencer and founding member of vCISO Catalyst, she has helped numerous security professionals transition from corporate roles to independent practices. Her expertise spans cyber risk assessment, regulatory compliance (PCI, HIPAA, GDPR), and security program management, supported by prestigious certifications including CISSP, C|CISO, CIPP/E, and CIPM. Throughout her career, she has served in key security leadership roles at InComm Financial Services, First Advantage, and ABB Software, where she consistently demonstrated success in building robust security programs and fostering a culture of security in global organizations.
About the Path to Becoming a vCISO
The Path to Becoming a vCISO is a curated collection of insights from some of the most respected voices in the virtual CISO space. Through in-depth interviews, these industry leaders share their journeys, challenges, and hard-earned lessons on building and scaling successful vCISO practices. The hub offers practical tips, real-world strategies, and proven advice to help service providers scale effectively, differentiate their services, and deliver measurable value to clients.
At Cynomi, we’re committed to supporting the growth of the vCISO community. This hub is our way of spotlighting the people shaping the future of cybersecurity leadership—and providing valuable guidance for MSPs, MSSPs, and aspiring vCISOs looking to elevate their services.