Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud

Secureframe: Compliance Without Crying

Truth in IT
05/07/2025
83
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


Mike Matchett Small World Big Data. We are here at Rsac 2025. We are prowling the floor looking for the latest and greatest cybersecurity vendors with innovative solutions for cybersecurity. We are here with Mark today. And we're going to talk about compliance a little bit. So let's start off with compliance is a big world right. And there's a lot of stages to it. What is your kind of unique approach to compliance. Yeah. So SecureFrame. Um, yeah. We our biggest value prop when it comes to compliance is automation. So compliance is a very manual process where organizations are needing to pull evidence. They need to meet and monitor these controls and requirements. And they have been doing that using spreadsheets and screenshots and things like this. Right. So what what SecureFrame is doing is we're enabling these organizations to integrate their technology into our platform, where we pull that configuration data and run tests against that, that data that allows those organizations to continuously monitor their compliance instead of only dealing with it when it comes time for the audit. Yeah. So let me ask you a more particular question. If we're talking about compliance in terms of filling out all the forms and helping them, that's one thing. Actually helping someone be more compliant and secure is another thing. Are you finding that your customers are getting a better security posture out of this at the end of the day? I absolutely do think so. What our platform does is it enables smaller companies who don't have the budget or don't have the resources to begin their foray into cybersecurity and compliance. Um, typically it's it's quite difficult to get to get prepared for an audit without the use of a tool like SecureFrame, where the small businesses that are using modern technology, like cloud service providers, they're building software. Our platform makes it a lot easier for them to integrate those tools into a solution, see exactly what's compliant, what's not. What changes they need to make, and do all of that with without the need for hiring cybersecurity folks or using consultants or things like that. One of the trends I've noticed here at Rsac, talking to a bunch of folks who are in related spaces to compliance and remediation even, is that some of those worlds are colliding a little bit. Like compliance can no longer be something you do once a year. So it tends to work down the stack to being more operational. But if you're a smaller company, you don't have the bandwidth to do that all the time. So what would your advice be to someone looking at that situation? Yeah, I think definitely embracing software, automation, AI, any sort of technologies that you can to make manual processes more automated and efficient. That's what I would recommend for any company. And that's what our value prop is at SecureFrame. I mean, we are spending a lot of effort to build our platform to really embrace these changes and make all of these different manual processes more automated and streamlined for these companies. So if you look around at the at the themes that you're seeing here at Rsac and you're hearing from people, what would you say is one of the bigger things you're talking about and what would your advice be to them? Yeah, I think one of the biggest themes that I'm seeing is the industry is finally adopting this automation thing. SecureFrame has been building this tool for the last five years, just trying to convince organizations, audit assessment firms, the industry as a whole that automation is the future. And what we're seeing is that finally, the light bulb is like clicking for a lot of these industry partners, regulatory bodies, audit firms to adopt a lot of this software and just make the entire compliance process more efficient from beginning to end. I noticed your whole panoply of compliance regs here. We could get into some details about which ones and how fast and how responsive. But I just really want to say you haven't yet to say the words I. Do you have any thoughts about that? Yeah, so I did. Yeah. I did mention AI a little bit. We do. We are building some AI functionality in our platform. Um, because there's a lot of opportunity to use AI to make things more efficient. One thing is through, like building and editing policies and procedures. Ai does a great job when it comes to that. We have AI built into the platform which reviews configurations, what can be changed, and then provides like specific remediation guidance based on the findings in SecureFrame. So I really think AI is is the future. Um, and when when it comes to AI, it's important to look at security as well. So it's easy to adopt AI into your platforms. It's hard to ensure that the privacy of the data that is being sent is in place, and then the security of the implementation is there as well. If you look around the 25,000 people that are here and you'd want to get one message out to them about compliance, what would that be? Yeah, embrace the automation and do it sooner than later. Um, if you have any sort of manual processes when it comes to meeting, maintaining, organizing compliance through your next audit, if you're having a really hard time, uh, I would take a look at a tool like SecureFrame to help you manage and monitor that process. All right. If someone wants to get a little bit more information about SecureFrame, you probably have a website. But for the RSA crowd, is there anything specific you'd point at folks to to get started? Yeah. Um, if you're an organization that's seeking Assessments and audits and you deal with compliance internally. Definitely feel free to reach out to SecureFrame via our website. We also offer a platform for MSPs and service providers consultants Vsos. If you're looking for an easier way to manage your customer's compliance environment, that's what SecureFrame is really good for. And we have a partner signup form on our website as well. Yeah, we didn't talk much about the supply chain in terms of being compliant up and down the supply chain, but this sounds like it has a play there too. Absolutely, yeah. If you're a service provider and you provide a security function for your customers and they need to be audited, then they're going to be looking at you to make sure that you have your controls in place when it comes to your customers. I mean, it's really become an interlinked web of dependencies all around for security. And that's, I think, one of the major themes I'm seeing in addition to AI folks. Thank you so much, Mark, for talking to us today. Yeah. Of course Mike. Yeah. Thanks for having me. All right. Take care, folks.

Secureframe transforms compliance from a dreaded annual chore into a streamlined, automated workflow. Their platform continuously pulls and tests configuration data, making audits easier—and security stronger—especially for resource-strapped companies.

Categories:
  • » Small World Big Data
  • » Cybersecurity Webinars
  • » Cloud Webinars
Channels:
  • Mike Matchett: Small World Big Data
News:
Events:
Tags:
  • rsac2025
  • cybersecurity
  • matchett
  • secureframe
  • compliance
  • automation
  • continuous
  • monitoring
  • ai
  • remediation
  • audit
  • readiness
  • cloud
  • compliance
  • msp
  • solutions
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated

            Video's comments: Secureframe: Compliance Without Crying

            Upcoming Webinar Calendar

            • 09/09/2025
              11:00 AM
              09/09/2025
              From SSE to SASE: Transforming Connectivity with Netskope One SD-WAN
              https://www.truthinit.com/index.php/channel/1429/transforming-connectivity-transitioning-from-sse-to-sase-with-netskope-one-sd-wan/
            • 09/10/2025
              01:00 PM
              09/10/2025
              Netskope: Ask Bob: How to Mitigate Your Risk Profile
              https://www.truthinit.com/index.php/channel/1420/mitigate-risk-for-enhanced-safety-and-security/
            • 09/11/2025
              01:00 PM
              09/11/2025
              Cyera: An Executive’s Guide to Secure AI Adoption
              https://www.truthinit.com/index.php/channel/1374/an-executives-guide-to-secure-ai-adoption/
            • 09/16/2025
              12:00 AM
              09/16/2025
              Realize the Complete Potential of SASE Through Netskope One SD-WAN
              https://www.truthinit.com/index.php/channel/1439/realize-the-complete-potential-of-sase-through-netskope-one-sd-wan/
            • 09/16/2025
              12:00 PM
              09/16/2025
              SOC 2 for Startups: Strategies to Reduce Costs, Enhance Efficiency, and Achieve Compliance
              https://www.truthinit.com/index.php/channel/1410/soc-2-for-startups-strategies-to-reduce-costs-enhance-efficiency-and-achieve-compliance/
            • 09/16/2025
              01:00 PM
              09/16/2025
              KnowBe4: Beyond DMARC: Closing Critical Gaps in Your Email Security Shield
              https://www.truthinit.com/index.php/channel/1403/beyond-dmarc-closing-critical-gaps-in-your-email-security-shield/
            • 09/16/2025
              01:00 PM
              09/16/2025
              HUMAN Security: CISO to CISO: A HUMAN conversation about Artificial Intelligence
              https://www.truthinit.com/index.php/channel/1411/ciso-to-ciso-a-human-conversation-about-artificial-intelligence/
            • 09/18/2025
              04:00 AM
              09/18/2025
              Netskope: La dualité de l’IA : inspirer l’innovation tout en protégeant l’avenir
              https://www.truthinit.com/index.php/channel/1446/la-dualité-de-lia-inspirer-linnovation-tout-en-protégeant-lavenir/
            • 09/18/2025
              04:00 AM
              09/18/2025
              Netskope: Die doppelte Funktion der KI: Innovationsantrieb und Sicherheitsgarant
              https://www.truthinit.com/index.php/channel/1445/die-doppelte-funktion-der-ki-innovationsantrieb-und-sicherheitsgarant/
            • 09/18/2025
              10:00 AM
              09/18/2025
              Netskope: La dualità dell'IA: stimolare l'innovazione e salvaguardare il futuro
              https://www.truthinit.com/index.php/channel/1444/la-dualità-dellia-stimolare-linnovazione-e-salvaguardare-il-futuro/
            • 09/18/2025
              11:00 AM
              09/18/2025
              Trend Micro Webinar: Risk in Real Time: Agentic SIEM
              https://www.truthinit.com/index.php/channel/1372/risk-real-time-agentic-siem/
            • 09/18/2025
              01:00 PM
              09/18/2025
              Netskope: Harnessing AI’s Dual Nature: Progress and Protection
              https://www.truthinit.com/index.php/channel/1424/harnessing-ais-potential-for-innovation-and-mitigating-associated-risks/
            • 09/24/2025
              02:00 PM
              09/24/2025
              Achieving Full Network and Application Visibility through Zero Trust with Netskope and ExtraHop
              https://www.truthinit.com/index.php/channel/1427/achieving-full-network-and-application-visibility-through-zero-trust-with-netskope-and-extrahop/
            • 09/25/2025
              12:00 AM
              09/25/2025
              Netskope One Redefines Secure SD-WAN
              https://www.truthinit.com/index.php/channel/1440/discover-the-benefits-of-netskope-one-secure-sd-wan/
            • 09/25/2025
              12:00 PM
              09/25/2025
              Netskope: Secure the Future--AI Usage & Data Security in the Enterprise
              https://www.truthinit.com/index.php/channel/1434/ensuring-data-security-and-ai-integration-for-a-resilient-enterprise-future/
            • 09/25/2025
              12:00 PM
              09/25/2025
              360View: Email Security & Social Engineering Defense
              https://www.truthinit.com/index.php/channel/930/360view-email-security-social-engineering-defense/
            • 10/23/2025
              12:00 PM
              10/23/2025
              360View: Preventing Data Exfiltration: Keeping Enterprise Data Secure
              https://www.truthinit.com/index.php/channel/931/360view-preventing-data-exfiltration-keeping-enterprise-data-secure/
            • 10/28/2025
              12:00 PM
              10/28/2025
              Netskope: Data Security Reimagined: Regain Your Control and Confidence
              https://www.truthinit.com/index.php/channel/1432/data-security-reimagined-regain-your-control-and-confidence/
            • 11/20/2025
              12:00 PM
              11/20/2025
              360View: Budget Optimization: Doing More with Less
              https://www.truthinit.com/index.php/channel/932/360view-budget-optimization-doing-more-with-less/
            • 12/18/2025
              12:00 PM
              12/18/2025
              360View: 2026 IT Predictions & Emerging Trends
              https://www.truthinit.com/index.php/channel/933/360view-2026-it-predictions-emerging-trends/

            Upcoming Spotlight Events

            • Sep
              11

              Cyera: An Executive’s Guide to Secure AI Adoption

              09/11/202501:00 PM ET
              • Sep
                16

                KnowBe4: Beyond DMARC: Closing Critical Gaps in Your Email Security Shield

                09/16/202501:00 PM ET
                More events

                Upcoming 360 View Events

                • Sep
                  25

                  360View: Email Security & Social Engineering Defense

                  09/25/202512:00 PM ET
                  • Oct
                    23

                    360View: Preventing Data Exfiltration: Keeping Enterprise Data Secure

                    10/23/202512:00 PM ET
                    • Nov
                      20

                      360View: Budget Optimization: Doing More with Less

                      11/20/202512:00 PM ET
                      More events

                      Upcoming Industry Events

                      • Sep
                        09

                        From SSE to SASE: Transforming Connectivity with Netskope One SD-WAN

                        09/09/202511:00 AM ET
                        • Sep
                          10

                          Netskope: Ask Bob: How to Mitigate Your Risk Profile

                          09/10/202501:00 PM ET
                          • Sep
                            16

                            Realize the Complete Potential of SASE Through Netskope One SD-WAN

                            09/16/202512:00 AM ET
                            More events

                            Recent Industry Events

                            • Aug
                              26

                              Renown Health Secures 10K Mailboxes & Stops $1M+ in Email Threats (Abnormal Security Webinar)

                              08/26/202501:00 PM ET
                              • Aug
                                25

                                Cyera: Harnessing AI to Transform the Landscape of Data Security

                                08/25/202510:55 AM ET
                                • Aug
                                  19

                                  Secureframe: CMMC 2.0 Insights: Understanding Compliance from an Expert Auditor's Perspective

                                  08/19/202512:00 PM ET
                                  More events
                                  Truth in IT
                                  • Sponsor
                                  • About Us
                                  • Terms of Service
                                  • Privacy Policy
                                  • Contact Us
                                  • Preference Management
                                  Desktop version
                                  Standard version