Learning to Love Your Security Audit
Blog Article Published: 09/16/2014
By Mike Pav, VP of Engineering, Spanning Most folks treat a security or compliance audit like a visit from the storm troopers: a big uncomfortable disruption to your daily life (if a visit from the Empire can indeed be considered “uncomfortable”). But it does not need to feel that way. At Spanning, we started out with a “do the right thing” (thanks Spike Lee) mentality built into our DNA, and it has made all the difference in terms of how we view our security audit efforts. While security, privacy, reliability and availability are non-functional requirements, making them a part of your everyday conversations is critical for sailing through audits. I’ve learned to love our audits for two main reasons:
- Since we prepare for them in advance - before we even know they’re coming - we constantly have the opportunity to make our business better.
- The audit process will either help us find ways to improve even further or we’ll get a stamp of approval that validates all the hard work we’ve done to be compliant.