Cannabis Process

Screen Shot 2018-08-12 at 11.10.27

Find Your Risk

Identify the risks within your cannabis dispensary, product, or grow facility through our SMP and SLC.

  • What kind of risks can be discovered through open source intelligence? 

  • Does my company conduct external penetration tests? 

  • Does my company conduct social engineering assessments? 

Allow the IT and security teams of the companies to identify and manage risks from one location while having oversight from the cannabis holding company. 

Screen Shot 2018-06-18 at 17.31.37

Digital Information Security Program

Track and quantify the risk within your cannabis company through our SMP, allowing oversight into outstanding risks.

  • What compliance and regulations requirements do our portfolio companies have to follow? 

  • Has your cannabis company ever been compromised, and what were implications?

  • What kind of technology is or cannabis holding company using for security protection? 

Understand the needs of the companies around risks, budgets, and staffing to ensure information security is top of mind. 

Screen Shot 2018-06-18 at 17.52.44

Continuous Oversight

Provide the oversight needed to your portfolio companies to stay ahead of threats, hackers, and SEC/ HIPAA regulations.

  • Does the cannabis holding company have a CISO communicating with the board and investors? 

  • Does the cannabis holding company provide an additional budget or technology savings for their portfolio? 

  • Does the cannabis holding company hold regular meetings with the security contacts within each portfolio to share technical knowledge? 

Bridge communications throughout the portfolio to provide the necessary needs and wants throughout.  This will allow for decreased budget, increased efficiency, and stronger defenses. 

Intellectual property Protection 

Gain oversight into the information security risks externally and internally that could compromise company secrets. 

SEC Compliance

An SEC report shows that human involvement is still very necessary when it comes to accounting and logging transactions.  Improper practice can lead to the loss of millions of dollars.

noun_Cannabis_1777415 (1)
Physical Security


Understand the risks unique to your establishment or brand.  From protecting physical assets to ensuring the efficiency of your supply chain.

noun_third party transfer_1215073
Cryptocurrency and ATMs

Cryptocurrency provides unique opportunities for the cannabis industry and also introduces a new set of risks. Asses your unique situation to develop a holistic strategy to mitigate risk.

Seed to sale

Analyze your supply chain management for risks unique to the industry and your organization. Use blockchain technology to identify and protect assets at any stage of sale within your company.

Orchestrate your Information Security Program TRY IT NOW

Find The Data. Protect The Data.

Digitize your information security program through continuous assessments against the organization. 

Screen Shot 2018-08-12 at 11.10.27
Identify and Manage Risks

Manage portfolio risks from OSINT, External, and employees risks while managing the entire portfolio through a single pane of glass with our SMP. 

Screen Shot 2018-06-18 at 17.31.37
Portfolio Team Onboarding

Onboard the entire team (IT, Security, Finance, Legal) and manage the entire risk profile for portfolio company through our SMP. 

Screen Shot 2018-06-18 at 17.52.44
CISO Marketplace

Access a variety of vendors selling products and services with transparent pricing and successful track records. Map these solutions directly to the risks identified. 


Build an information security program for your cannabis company to stay ahead of cyber threats and SEC/ HIPAA regulations. Incorporate technology to help streamline the discovery and remediation techniques. Offer this robust solution to portfolio companies to continuously gain insights into their risks. 

Sign up and learn more:

  • Does my cannabis company have a CISO or technical experience that speaks with the board or investors?
  • Has any of our portfolio been breached before? 
  • Do we provide oversight and knowledge to our portfolio from our cannabis company? 
  • What does the SEC/ HIPAA require of our cannabis holding company around portfolio information security?