Justanothernate
@justanothernate.bsky.social
Founder @ Cloudsec.ai, Exec-in-Residence at Scale Venture Partners and former CISO @ Tradeshift.
It unwittingly leads to trading real security and risk conversations for performative compliance from your vendors in the name of checking boxes.
What if instead, we focused on having direct discussions about the risks and associated controls that truly matter for the specific use case?
What if instead, we focused on having direct discussions about the risks and associated controls that truly matter for the specific use case?
January 4, 2025 at 11:08 PM
It unwittingly leads to trading real security and risk conversations for performative compliance from your vendors in the name of checking boxes.
What if instead, we focused on having direct discussions about the risks and associated controls that truly matter for the specific use case?
What if instead, we focused on having direct discussions about the risks and associated controls that truly matter for the specific use case?
The result?
Vendors feel pressured to check every box on security questionnaires rather than having meaningful discussions about what actually matters for a given business relationship.
January 4, 2025 at 11:08 PM
The result?
Vendors feel pressured to check every box on security questionnaires rather than having meaningful discussions about what actually matters for a given business relationship.