Inside DigitalOcean’s SOX Compliance Playbook

Security Startegy for Startups

In the latest episode of All Aboard, Alex Bovee is joined by Observa CEO, Rob Picard. Rob got his start in security as a pen tester and went on to be an early security hire at both Robinhood and Vanta, where he helped establish security programs designed to scale. He’s now leading Observa, a security consulting firm focused on helping startups develop a strong security structure.

Alex and Rob dive into Rob’s four-pillar framework for securing early-stage companies, which includes GRC, security engineering, enterprise security, and security operations. Rob details challenges and best practices for each pillar, the impact they have across the different stages of a company, and how teams should allocate resources to address each one effectively.

What’s inside:

  • When to get a SOC 2 and how to choose compliance frameworks based on your organization’s needs
  • The risks every startup should be thinking about and how to address them
  • Why adopting the right technology doesn’t require a massive investment
  • When to make your first security hire
  • How to manage device and contractor security
  • Alert fatigue and the steps you can take to combat it
  • Why Rob’s optimistic about AI and emerging trends in the security industry

 

 

Stay in touch

The best way to keep up with identity security tips, guides, and industry best practices.