Just for fun discussions.
- 29 Topics
- 19 Replies
Compliance Uncomplicated Episode 5 📡🚀: An InfoSec Perspective to Digital Security Success With Nemean Services
In the fifth episode of our Compliance Uncomplicated podcast, Max Glynn—Information Security Manager at Nemean Services, recently promoted to Information Risk Assurance Manager for the entire MITMARK group—joins us to discuss digital asset security, continuous compliance, and what it takes to lead your company to information security success.Drata’s Rick Stevenson, Manager of Cybersecurity Risk Management and Compliance, Helina Medhin, Senior Community Strategist, and I go on a deep dive with Max on how to take an InfoSec approach to securing your company, and how Nemean Services walks the walk. Got a question for Max? Let’s continue the conversation below 👇 ⬇️
Ask Me Almost Anything (AMAA): Got a Question for Eden Data's Taylor Hersom? 🤔 Drop it below for our next episode! 👇 ⬇️
Got a question for Eden Data’s Taylor Hersom? Drop it below for to be featured in our next Ask Me Almost Anything episode. 🚀Ask Me Almost Anything is a series that goes behind the scenes with today’s industry thought leaders. We’ve got our own questions of course, but it’s even better when we hear directly from you!
Giveaway Alert 🔔 🚨 🎉 : Share your best practices for cloud compliance for a chance to win!
Moving “to the cloud” doesn’t free your organization from information security or data privacy concerns. In fact, you will face new risks as third-party vendors replace your on-premises systems. Controlling those cloud risks is easier when you adopt security frameworks like ISO/IEC 27001 or SOC 2.Check out this article to learn about the importance of cloud compliance. And share your best practices improve your organization’s security in the cloud below for a chance to win 🏆 a pair of airpods on us! 👀 🎧
Vendor Management Policies: Why Do You Need Them? What Are The Benefits?
A vendor management policy defines a consistent process for controlling the risks you face whenever your business works with third parties. Any interactions between your systems and those of your suppliers, customers, and contractors could open pathways through your security defenses. Controlling these risks improves security and compliance, but only if you plan ahead. Check out the full article to learn what you need to know about creating a vendor management policy. And share your thoughts with us below 👇 ⬇️ .
New Episode! 📲👀🎉:: Compliance Uncomplicated Podcast: Todd Schiller, Co-Founder and CEO of PixieBrix
Let’s Uncomplicate Compliance, Together. Compliance Uncomplicated is an interview series dedicated to simplifying the unnecessarily complex world of risk and compliance. Every business, industry, and team has unique challenges when it comes to building trust, and for many startups, compliance is a stepping stone towards that pathway. Looking to deliver a better user experience? Todd Schiller, Co-Founder and CEO of PixieBrix, says the key is making “the user the hero of the story.” 🦸 Tune in to the latest episode of Compliance Uncomplicated, where Todd joins Drata co-hosts Helina Medhin and Arlo Guthrie to discuss how technology can better bridge humans and computers, and how PixieBrix is democratizing software customization—putting the user at the center of the experience.Listen to the full episode on:🎧 Drata’s blog: https://lnkd.in/ehuhPtAQ🎧 YouTube: https://lnkd.in/eARAjpUD🎧 Apple Podcasts: https://lnkd.in/egC4pcHw🎧 Spotify: https://lnkd.in/eDncAsyw🎧 Amazon Music: https://lnkd.
How to Address 6 Major Fintech Security and Compliance Risks
Compliance has become table stakes for fintech. Here are six ways continuous fintech compliance programs address security and compliance risks. Keep reading to learn more, and check out the our blog for the full article. Cyber Attacks and VulnerabilitiesSecurity breaches are not exclusive to the fintech industry. Hackers and advanced persistent threats can exploit any company’s weaknesses. However, fintech companies often face greater risk because they work with sensitive financial data.Modern security frameworks such as SOC 2 and PCI DSS help fintech companies identify and close the gaps in their defenses. But that is not enough. A compliance program goes beyond meeting a security framework’s requirements. Continuously monitoring compliance lets you identify and close new security gaps before their impact can spread. Crypto-Asset and Other Fintech RegulationFintech companies operate in a regulatory grey area. In some cases, they may not be subject to a regulation that applies to th
Ask Cobalt's VP of Product, Dalyn Ward Almost Anything (AMAA)
New Episode! 📲👀🎉 Compliance Uncomplicated Episode 3: The Common Language of Security With LinearB
Let’s Uncomplicate Compliance, TogetherCompliance Uncomplicated is an interview series dedicated to simplifying the unnecessarily complex world of risk and compliance. Every business, industry, and team has unique challenges when it comes to building trust, and for many startups, compliance is a stepping stone towards that pathway. In the third episode of Compliance Uncomplicated, we interview Yishai Beeri, the CTO of LinearB. Yishai shares insights on creating a cross-departmental culture of security and the importance of automation in growth.
New Episode! 📲👀🎉 Compliance Uncomplicated Podcast: The Art of Appreciation With Client Giant
Let’s Uncomplicate Compliance, Together Compliance Uncomplicated is an interview series dedicated to simplifying the unnecessarily complex world of risk and compliance. Every business, industry, and team has unique challenges when it comes to building trust, and for many startups, compliance is a stepping stone towards that pathway.In this episode Client Giant Co-Founder and Chief Day Maker, Jay O'Brien, discusses the importance of showing appreciation in customer service, and how that builds meaningful, trusting relationships with customers. Check it out and share your thoughts with us! 👇🏽🚀
Are you compliant? State Privacy Policies Effective 2023
Hey Drata Community! Did you know that several state privacy policies went into effect in 2023? Those states include:California Colorado Utah Connecticut VirginiaIf you're unsure whether these laws apply to you, reach out to your legal counsel and start the discussions now. And for a quick breakdown of these laws, head over to this post by our Director of Risk and Compliance, Troy Fine. Let’s also chat about it below! 👇
Introducing Compliance Uncomplicated, the Drata Podcast 📡
Compliance Uncomplicated is an interview series dedicated to simplifying the unnecessarily complex world of risk and compliance. Every business, industry, and team has unique challenges when it comes to building trust, and for many startups, compliance is a stepping stone towards that pathway.In each episode, we’ll hear from founders, visionaries, and those tasked with building a foundation of trust for their brand. Check it out here and share your thoughts with us! 👇 ⬇️ Who would you like to see us chat with next? 👀
Connect and Collaborate with Your Auditor In One Place
We’re so excited to announce the launch of our new Audit Hub, the solution to faster, more efficient audits. The Audit Hub is an intuitive platform that streamlines every step of the audit process. With this new addition, you and auditors can communicate and collaborate in near real time, saving hours of back-and-forth communication. The platform also eliminates the possibility of misplacing crucial evidence and allows instant documentation sharing.The Audit Hub features include: Real-time collaboration Task management In-platform chat Separate “Auditor View” Past audit archive Evidence requests and approvals We are confident that the Audit Hub will revolutionize the audit process, making it more efficient, painless, and enjoyable for everyone involved. We encourage you to learn more about the Audit Hub here and see what a world without audit stress can look like. Share your thoughts and feedback with us below! 👇 ⬇️
2023 Compliance Trends Report
This week Drata is officially releasing the 2023 Compliance Trends Report. Please use this space to discuss the report or ask any questions after looking through it.You can access the report here. If you are a Drata customer, you can skip the form and access it directly in the private customer area.Key Takeaways 100% of organizations see value in adopting continuous compliance. Over 9 in 10 companies plan to achieve continuous compliance in the next five years. 87% of organizations indicated negative outcomes as a result of low compliance maturity. 3 in 4 companies who have achieved some level of continuous compliance feel their program is a business driver. 76% of companies who follow a point-in-time compliance approach feel the related effort is a burden. IT and security professionals spend an average of 4,300 hours annually achieving or maintaining compliance.
🤫 The 2023 Compliance Trends Report is coming soon
As members of the Drata community, we wanted you all to be the first to know about an upcoming white paper being published in the next two weeks: The 2023 Compliance Trends Report. This will be a research report based on a survey of 300 established and enterprise organizations, the role compliance plays in business acceleration, and the rise of continuous compliance.You can get a preview of the report with the first article we published this week:Moving to a Proactive State of Compliance
Vote on these beer names for our upcoming Community Launch Event in SF! 🍻👀
The Drata team is taking over Black Hammer Brewing for the launch of this new online community, and you are invited! You'll hear from Drata experts and customers alike on how to grow your business with compliance. Spots are limited, so register today!And now here’s where we also need your help naming our brews for the night! Vote below for your favorite Drata beer name, and comment below with any of your own unique suggestions! 👇🏽🍻🎉
In San Fransisco? Join us on January 26.
The Drata team is taking over Black Hammer Brewing for the launch of our new online community, and you are invited!You'll hear from Dana Mauger, Director of Product Management, and Ashley Hyman, our VP of customer success, who will provide insight into what they're brewing to solve your risk and compliance ale-ments.Spots are limited, so register today!The Details Thursday, January 26 from 5-7 p.m. Black Hammer Brewing (in SOMA) Light bites and beverages
🚨 PSA: ‘Audit’ Shouldn’t be a Dirty Word
Hey Drata Community! 🚨 PSA: ‘Audit’ shouldn’t be a dirty word for organizations pursuing compliance. In fact, Troy Fine, our very own Drata expert, says cybersecurity audits should be welcomed rather than feared.WHAT’S YOUR BIGGEST FEAR AROUND AUDITS? SHARE WITH US BELOW. You can also learn more here where Troy breaks down the stigma around audits, why it's important to have a positive relationship with auditors, and how automated tools can help with both in Corporate Compliance Insights. 🔥🔐
Welcome, Drata Community! We want to hear from you!
Hello everyone! My name is Helina Medhin and I’m your Community Manager here at Drata. I’m so excited to re-launch this space where we will host interactive events, share behind-the-scenes interviews with some of the most dynamic cybersecurity and compliance experts, and have some truly insightful conversations. Think of this as your go-to space for all things Community and me as your go-to person for feedback, questions and comments. Additionally, keep your eyes peeled for our bi-monthly newsletter Trusted, some sweet swag giveaways, and even relevant job postings in the GRC, engineering and security world. I truly look forward to connecting with each and everyone of you in the coming weeks. So let’s get this going! A little about me: I’ve been building community in the tech world for nearly a decade. From Yelp to Swimply, and now Drata, I’ve had no shortage of incredible experiences learning from CEOs, CISOs and other amazing tech and security professionals. I currently reside in Lo
Submit your Questions for AMAA (Ask Me Almost Anything) with Cobalt’s VP of Product, Dalyn Ward
Hey there, Drata Community! We’re getting geared up to chat with Cobalt’s VP of Product Dalyn Ward for our next episode of Ask Me Almost Anything. Got a question you want to ask him re: pentesting for security and development? Drop them below 👇🏽 and we will include it in our next episode coming January 2023. 🎉❄️
Welcome to Secured, The Drata Community
Hello and welcome to Secured, the Drata community! Today we are excited to open the doors to the world. Over the past few months we’ve been building in beta, and truly appreciate the wonderful feedback we’ve received to date. Over the coming months we are going to continue to produce exclusive content, interviews, podcasts, and interview series; and most importantly, Secured is designed for you to share best practices around GRC, IT, and security.As you engage, share content, and interact with our series you’ll gain points, earn badges, and rank up. We’re also working on an exclusive launch shirt, which will share with you soon, and you can earn it by trading in your points.New to the world of compliance? Check out our new series by @Troy_Fine where he will walk us through SOC 2 For customers, we’ve also built an exclusive area where you can discuss our latest releases, share how you are taking advantage of the platform, and a few other surprises.Have feedback? Please reach out and let
How to have a positive audit experience. Vote & share to win!
Hey all! I know there can be a lot of stigma around audits, but it’s definitely possible to have a positive experience in this arena.🤓 Check out this article for Drata’s expertise on handling an audit. And for the chance to win a brand new pair of Apple airpods 🎶🎧, vote on the poll below & share your audit questions and comments below! 👇🏽 Entries will be accepted until December 23rd at 10AM PST.
Ask Cody Wright of HyperComply Almost Anything (AMAA)
Check out our latest episode of Ask Me Almost Anything (AMAA) where we sit down with the founder and CTO of HyperComply, Cody Wright. Thanks for all of you that submitted your security questions in advance via Secured and email. We’ve curated the best ones for this week’s episode. Enjoy and don’t forget to share your comments below!
Curricula's Nick Santora Answers Almost Anything (AMAA)
Join Drata Marketing Specialist Alexa Ovenshire as she chats with Curricula founder and CEO, Nick Santora, for Cybersecurity Awareness Month. We received many wonderful questions via Secured and email, and have curated the best questions for this week’s episode of Ask Me Almost Anything (AMAA). Have additional questions for Nick? Feel free to post them below and let’s continue the conversation! PS, if you are looking for the free girl scout cookies from our newsletter, then you failed our quishing simulation. But if you leave a question for Nick, we may just send you a box.
Yo dawg, I heard you liked AMAAs so we wrote about AMAAs and are now posting it back into the community
Insert meme.png here.We wanted to quickly thank each of you for contributing to our very first AMAA with @jonathan last month, and those that have added some questions in for our currently active AMAA prompt (see below). As we continue to build these out, we just wanted to highlight how impactful your voice is for our creative team, and occasionally your questions will even be featured in our interviews. You can get the full scoop on our initial AMAAs in our recent blog post here. If you haven’t had a chance to add in a question for Kelli, there is still some time!
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.