CISO services for the ROIX crowdfunding platform
ROIX is a crowdfunding platform with over 20 years of experience in investment fund management. The financial sector is not only one of the most targeted by cyber attacks, but also subject to strict security requirements for companies operating in it. The role of the CISO is to ensure compliance with these requirements and to promote cyber security maturity. Armine Aslanian, Chief Product Officer at ROIX, shares why the company chose a managed CISO services provider, what expectations it has for this role beyond compliance, and what changes it has already noticed.
1. Why did your organization need a CISO?
As a reliable and responsible crowdfunding platform operating in a regulated financial market, we have sought to ensure the highest standards of cybersecurity and data protection since the very beginning of our operations. In this sector, it is extremely important to ensure not only customer trust, but also compliance with increasingly stringent requirements. The European Union’s DORA regulation, as well as the GDPR and other legislation, set out clear requirements for the information security and operational resilience of organizations in the financial sector. With this in mind, we realized that the role of CISO is not a choice but a necessity. Having an experienced security partner means not only complying with requirements, but also acting proactively to identify risks, protect data, and maintain a high level of customer and investor confidence.
2. Why did you choose an external CISO and why NRD Cyber Security in particular?
We are flexible and focused on effective solutions. That is why we chose the external CISO model, as it gave us the opportunity to have the most competent security experts without having to create a separate internal department. We chose NRD Cyber Security because of their extensive experience with financial institutions, their systematic approach, and their ability to adapt to our specific needs and pace. This partnership allows us to maintain our operational speed while ensuring comprehensive cyber resilience, which is one of ROIX’s main goals.
We chose NRD Cyber Security because of their:
Experience with financial institutions
Systemic approach
Ability to adapt
3. What changes have you noticed in your organization since you started using CISO services?
Working with an external CISO, we felt that our security management went beyond formalities. It became an active, ongoing process. We not only received a clear cybersecurity strategy, but also specific measures to implement it: from incident management to supplier risk assessment. This allowed us to make more informed decisions and better inform our investors and partners about our security maturity. As a responsible platform, it is important for us not only to comply with requirements, but also to build trust and be a market leader, and this partnership helps us achieve that.
4. Why would you recommend other organizations to work with us?
The ROIX team believes that success in finance comes not only from technological advancement, but also from partnerships with those who share our approach to responsibility, risk, and value. Therefore, we recommend NRD Cyber Security without hesitation. The organisation’s professionalism, systematic approach, and flexibility allow us to feel secure even in a rapidly changing environment. If, like us, your organization seeks not only to grow, but to do so sustainably, responsibly, and in a way that builds trust, a partner like NRD Cyber Security can be one of the strongest investments in your future.
“Having an experienced security partner means not only complying with requirements, but also acting proactively to identify risks, protect data, and maintain a high level of customer and investor confidence.”
Armine Aslanian, Chief Product Officer at ROIX
Other stories
CyberSOC managed SOC services in the Bank of Botswana
Natrix and CyberSet deployed for CSIRTMalta
Natrix threat monitoring platform for Egypt's financial sector
Assessment of the technical and organisational security defences for the Central Bank of Botswana's infrastructure
Assessment of the technical and organisational security defences for the Bank of Guyana's infrastructure
Sectorial CSIRT for energy sector in Kosovo
Cybersecurity Fusion Centre Capacity Building for the Central Bank of Nigeria
