Standing Up Your 1st Compliance Framework: Misconceptions and Best Practices

Presented by

Aaron Poulsen, Senior Director of Security, Risk and Compliance | Hyperproof & Charlie Wood, EVP | Bonadio Group

About this talk

If your organization is trying to adhere to a compliance framework (e.g. SOC 2, ISO/IEC 27000 series, PCI, HIPAA) for the very first time, it’s normal to have questions and feel confused about many aspects of the project. Here at Hyperproof, we get a lot of questions from organizations new on the compliance journey, such as: What are risk assessments? Can you give us security policy templates? What controls do I need to implement to be SOC 2 compliant? What’s a gap assessment? Can I put SOC 2 and ISO 27001 compliance on auto-pilot with software? In this webinar, Aaron Poulsen, Hyperproof’s senior director of Security, Risk, and Compliance, and Charlie Wood, EVP at the Bonadio Group (a top 50 CPA firm) will discuss the most confusing aspects of standing up a security compliance program. They’ll address why it’s dangerous to take a “box-ticking” approach to compliance and why you can’t rely 100% on software to do all the work. Additionally, they’ll share ideas on how organizations can operate a rigorous compliance program and avoid adding a burden to their staff. Attendees will receive a Certificate of Completion, which can be used for CPE credit.
Related topics:

More from this channel

Upcoming talks (3)
On-demand talks (67)
Subscribers (4545)
We seek to empower compliance officers and everyone who participates with compliance efforts. With our content, we aim to help these professionals guide organizations toward correct actions, a more ethical culture, fairness and greater transparency. Headquartered in Bellevue, WA, Hyperproof serves as a system of record for an organization’s compliance data and gives teams involved the tools they need to collaborate with stakeholders in and outside of their organization. With this innovative approach, we’re able to help organizations meet their highest aspirations and demonstrate their commitment to protecting their customers, shareholders, partners and suppliers along with the greater community. Check it out for yourself at