Plus Membership

Managed Cybersecurity & Cloud Protection

Compliance-as-a-Service

The HOZHO Membership is designed to make cybersecurity and compliance support accessible without large upfront costs, complex contracts, or long implementation delays. Our model is built around a Compliance-as-a-Service approach, which means your organization can begin improving its cybersecurity posture immediately while HOZHO helps guide, prioritize, and implement improvements over time.

Start Immediately - No Large Upfront Cost

Many organizations delay cybersecurity improvements because traditional consulting models require large upfront assessments, long projects, and expensive retainers. HOZHO Membership is different.

With the HOZHO Membership:

  • There is no large upfront consulting fee

  • You can start immediately

  • You receive ongoing cybersecurity guidance, tools, and support

  • Improvements are made over time in a structured, manageable way

The HOZHO CaaS model allows organizations to start improving their cybersecurity and compliance posture right away, rather than waiting for a large budget or a major project.

  • The HOZHO Membership operates as a Compliance-as-a-Service and Cybersecurity Program Support model. Instead of delivering a single report and walking away, HOZHO works with your organization over time to help build, improve, and maintain your cybersecurity program.

    This includes support in areas such as:

    • Cybersecurity governance and leadership guidance

    • Policy and procedure development

    • Remediation guidance and improvement planning

    • Reporting and progress tracking for leadership

    • Risk identification and prioritization

    • Security awareness and phishing training

    • Technical monitoring and protection tools

    The goal is not just to "check a box, " but to help organizations build sustainable cybersecurity practices that support long-term operations, insurance requirements, compliance expectations, and community trust.

  • Once your organization enrolls in a HOZHO Membership, you will receive access to the HOZHO Cyber Hub, which serves as your central resource center.

    The Cyber Hub includes:

    Cybersecurity training and awareness content

    Policy templates and governance resources

    Guides and checklists

    Cybersecurity program development materials

    Community updates and alerts

    Educational content for leadership and staff

    Downloadable resources and tools

    This allows your organization to begin learning, improving, and implementing better cybersecurity practices immediately.

  • After enrollment, a HOZHO vCISO (Virtual Chief Information Security Officer) will guide your organization through the onboarding process.

    The onboarding process typically includes:

    • Completing the Cyber Risk Baseline Assessment

    • Helping your organization understand which policies, training, and technical controls should come first

    • Identifying initial priority areas

    • Recommending next steps and a practical roadmap

    • Reviewing your current cybersecurity practices

    • Understanding your organization's structure and operations

    This process is designed to be practical and supportive, not overwhelming. The goal is to meet organizations where they are and help them move forward step-by-step.

Get Started

Plus Membership Overview

Insurance-Related Areas Supported by This Plan

The Basic Membership helps organizations establish and maintain practices related to:

✅ Backup practices

✅ Basic security documentation and procedures

✅ Cloud Data Protection

✅ Cyber risk assessments

✅ Cybersecurity policies and governance

✅ External exposure monitoring

✅ Incident Response Planning

✅ Identity Threat Detection & Response (ITDR)

✅ Managed Incident Response Plan

✅ Multi-factor authentication (MFA)

✅ Phishing simulations

✅ Security awareness training

✅ Vendor and third-party risk awareness

Everything in Basic + Plus

The HOZHO Plus Membership is designed for organizations that need more than basic cybersecurity protections. While the Basic Membership helps organizations establish cybersecurity foundations and meet many cyber insurance requirements, the Plus Membership expands coverage across people, processes, and technology to better detect, respond to, and recover from cybersecurity incidents.

Plus Membership includes everything in HOZHO Basic, along with additional protection and response capabilities that help organizations move from basic cyber readiness to active cyber defense.

The HOZHO PLUS Membership is a strong fit for:

➡️ Are working toward cyber insurance eligibility and compliance

➡️ Manage multiple users and devices

➡️ Need a structured Incident Response capability

➡️ Need visibility into user activity and data exposure

➡️ Store data in Microsoft 365 or Google Workspace

➡️ Want guidance implementing policies and procedures

Benefits included with PLUS

Get More

Need More Coverage? Add-Ons Are Available.

For organizations that need additional support, add-on services are available and can be bundled with your membership. These add-ons expand your cybersecurity coverage and provide deeper support in areas such as risk assessments, policy development, advanced training, and technical security services.

Add-ons allow organizations to scale their cybersecurity program over time while keeping the monthly membership affordable and predictable.

Cloud Data Protections

Cloud Data Protection helps organizations identify when files, folders, or sensitive data are shared publicly or exposed externally from cloud platforms such as Microsoft 365 or Google Workspace. If data exposure is detected, alerts are generated so the organization can quickly secure the data and reduce risk.

This helps organizations protect sensitive information, meet cybersecurity insurance expectations, and reduce the risk of data breaches caused by accidental sharing or misconfigured cloud settings.

Cloud environments supported:

✓ Google Workplace

✓ Microsoft 365

Cloud protection helps :

✓ Protect sensitive information

✓ Meet cybersecurity insurance expectations

✓ Reduce the risk of data breaches caused by accidental sharing or misconfigured cloud settings.

Identity Threat Detection & Response (ITDR)

Most cyberattacks today target user accounts. ITDR focuses on detecting identity-based attacks such as account takeover attempts, suspicious logins, impossible travel activity, and other abnormal user behavior.

Using advanced analytics and behavior monitoring, ITDR identifies early signs of an attack and generates alerts so action can be taken before an incident becomes a breach.

This provides protection for the human element of cybersecurity:

✓ Protects user identities

✓ Protects email accounts

✓ Protects access to systems

Managed Incident Response Plan

The Plus Membership includes development and management of an Incident Response Plan so your organization knows what to do when a cybersecurity incident occurs.

Many organizations have cybersecurity tools but no plan. This service ensures your organization is prepared to respond, not just detect.

This includes:

✓ Incident response plan template and customization

✓ Roles and responsibilities

✓ Communication plan

✓ Reporting procedures

✓ Annual review and updates

✓ Guidance during a real incident event

Cybersecurity Policies

Many organizations know they need cybersecurity policies, but do not have the time or internal expertise to draft them from scratch. The HOZHO Basic Membership includes access to policy templates that help organizations begin building a stronger governance foundation. These templates help support consistency, accountability, and clearer expectations around cybersecurity practices. They are designed to give organizations a starting point for establishing structure and communicating responsibilities.

Policy templates can help organizations with:

  • Creating a stronger foundation for future policy development

  • Defining security expectations

  • Improving governance maturity

  • Supporting internal accountability

Included Licenses

✓ 22 policy template licenses are included in this plan

Get More

Need More Coverage? Add-Ons Are Available.

✅ Change Management Policy

✅ Cloud Security Policy

✅ Data Protection and Privacy Policy

✅ Encryption Policy

✅ Incident Response Policy

✅ Logging and Monitoring Policy

✅ Network Security Policy

✅ Risk Management Policy

✅ Secure Configuration Policy

✅ Security Logging and Audit Policy

✅ Service Provider and Third-Party Risk Policy

✅ System Hardening Policy

✅ All the policies in BASIC

Policies included with PLUS plan

Why Organizations Move to PLUS

Many organizations start with Basic to meet cyber insurance requirements such as:

  • Policies and procedures

  • Security awareness training

  • External risk monitoring

  • Email protection

  • MFA guidance

  • Risk assessment baseline

Get Started

PLUS Membership builds on this by adding:

  • Data exposure monitoring

  • Identity attack detection

  • Incident response planning

  • Optional device protection

  • Ongoing advisory support

The Difference?

  • BASIC = Foundation

  • PLUS = Protection + Response

BASIC benefits are included

Get More

Need More Coverage? Add-Ons Are Available.

For organizations that need additional support, add-on services are available and can be bundled with your membership. These add-ons expand your cybersecurity coverage and provide deeper support in areas such as risk assessments, policy development, advanced training, and technical security services.

Add-ons allow organizations to scale their cybersecurity program over time while keeping the monthly membership affordable and predictable.

Basic Benefits

✅ Advanced Email Protection

✅ Cyber Risk Baseline Assessment

✅ Cybersecurity Policies

✅ Dark Web Monitoring & Credential Exposure Alerts

✅ Employee Training

✅ External Domain Monitoring

✅ vCISO Led Phishing Simulations Security Policy

Explore Basic

Get Started with PLUS Membership

The HOZHO Basic Membership is designed for small teams, nonprofits, tribal organizations, and K–12 schools that need meaningful cybersecurity support without the cost of a full internal security department.

This membership helps organizations take practical steps to reduce risk, improve awareness, and strengthen their cybersecurity foundation through affordable, recurring support.

Includes:

✅ Advanced Email Protection

✅ Cloud Protection

✅ Cyber Risk Baseline Assessment

✅ Cybersecurity Policies

✅ Dark Web Monitoring & Credential Exposure Alerts

✅ Employee Training

✅ External Domain Monitoring

✅ Identity Threat Detection & Response (ITDR)

✅ Managed Incident Response Plan (IRP)

✅ vCISO Led Phishing Simulations

Professional Services Add-Ons

While memberships provide the foundation of cybersecurity protection, some organizations require additional services to address specific risks, compliance requirements, or training needs.HOZHO offers professional cybersecurity services that can be added to any membership tier.

Many cybersecurity solutions are built for larger organizations with bigger budgets, larger teams, and dedicated security staff. The HOZHO Basic Membership is different. It is designed for organizations that need practical, affordable, and manageable cybersecurity support. It helps establish a stronger foundation without requiring a full-time cybersecurity executive or a large internal team. This membership is a good fit for organizations that want to:

  • Access Foundational policy resources

  • Gain visibility into exposures

  • Improve staff awareness

  • Reduce email and phishing risk

  • Start building a cybersecurity program

Simulated Phishing & Awareness Training

Get Started