To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Artwork

Tech Utsav Shah Podcasting Education
Content provided by Utsav Shah. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Utsav Shah or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Similar to Software at Scale

Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Software at Scale « »
Software at Scale 19 - Vanta

59:18
 
Play
Playing
Share
 

MP3Episode home

Fetch error

Hmmm there seems to be a problem fetching this series right now. Last successful fetch was on August 05, 2024 18:25 (11d ago)

What now? This series will be checked again in the next day. If you believe it should be working, please verify the publisher's feed link below is valid and includes actual episode links. You can contact support to request the feed be immediately fetched.

Manage episode 291533312 series 2899471
Content provided by Utsav Shah. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Utsav Shah or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Christina Cacioppo and Robbie Ostrow work at Vanta, an automated security and compliance company with a mission to secure the internet. Vanta sets up monitoring via a set of continuous tests to ensure basic security best practices, like mandatory MFA for employees. Each test bubbles up to one or more compliance standards like SOC-2 so that companies can rapidly move their audits and unlock deals.

Apple Podcasts | Spotify | Google Podcasts

This episode is special because of two reasons: I currently work at Vanta, and it’s the first combined interview with both the CEO and the first engineer at the company, which led to an interesting conversation with multiple perspectives.

As usual, the episode focuses on the technology and business of Vanta, and I’ve tried to not go easy on them, even though there’s an obvious bias involved :)

Highlights

My notes are italicized

2:00: “In order to work on a security company, you’d actually best start with compliance company” - compliance is a “hair-on-fire” problem for companies since it helps unlock deals, whereas security is often an afterthought. Solving compliance helps make companies safer since the incentives align better. This idea and the headache of SOX compliance at my previous job convinced me to work at Vanta.

5:00 - Continuous security monitoring vs. snapshots that are double-checked in audits

11:00 - How Vanta was initially built.

17:00 - Should security reports be standardized or extremely customizable per company?

20:00 - How does someone decide on the set of security policies? Do customers ask for advice?

31:00 - How should engineers think of developer productivity for their startups? What has the impact of initial choices like MongoDB and GraphQL been as the company has grown?

40:00 - At what point should a founder decide to hire an engineer? What qualities should the engineer have? At what point should the founder stop interviewing engineering candidates?

52:00 - How to effectively build a brand for a security company? Experiences over the past few years.

This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.softwareatscale.dev

  continue reading

60 episodes

#Tech #Utsav Shah #Podcasting Education
Artwork

Software at Scale 19 - Vanta

Software at Scale

21 subscribers

published

Play Playing
iconShare
 
MP3Episode home

Fetch error

Hmmm there seems to be a problem fetching this series right now. Last successful fetch was on August 05, 2024 18:25 (11d ago)

What now? This series will be checked again in the next day. If you believe it should be working, please verify the publisher's feed link below is valid and includes actual episode links. You can contact support to request the feed be immediately fetched.

Manage episode 291533312 series 2899471
Content provided by Utsav Shah. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Utsav Shah or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Christina Cacioppo and Robbie Ostrow work at Vanta, an automated security and compliance company with a mission to secure the internet. Vanta sets up monitoring via a set of continuous tests to ensure basic security best practices, like mandatory MFA for employees. Each test bubbles up to one or more compliance standards like SOC-2 so that companies can rapidly move their audits and unlock deals.

Apple Podcasts | Spotify | Google Podcasts

This episode is special because of two reasons: I currently work at Vanta, and it’s the first combined interview with both the CEO and the first engineer at the company, which led to an interesting conversation with multiple perspectives.

As usual, the episode focuses on the technology and business of Vanta, and I’ve tried to not go easy on them, even though there’s an obvious bias involved :)

Highlights

My notes are italicized

2:00: “In order to work on a security company, you’d actually best start with compliance company” - compliance is a “hair-on-fire” problem for companies since it helps unlock deals, whereas security is often an afterthought. Solving compliance helps make companies safer since the incentives align better. This idea and the headache of SOX compliance at my previous job convinced me to work at Vanta.

5:00 - Continuous security monitoring vs. snapshots that are double-checked in audits

11:00 - How Vanta was initially built.

17:00 - Should security reports be standardized or extremely customizable per company?

20:00 - How does someone decide on the set of security policies? Do customers ask for advice?

31:00 - How should engineers think of developer productivity for their startups? What has the impact of initial choices like MongoDB and GraphQL been as the company has grown?

40:00 - At what point should a founder decide to hire an engineer? What qualities should the engineer have? At what point should the founder stop interviewing engineering candidates?

52:00 - How to effectively build a brand for a security company? Experiences over the past few years.

This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.softwareatscale.dev

  continue reading

60 episodes

#Tech #Utsav Shah #Podcasting Education

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Similar to Software at Scale

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Quick Reference Guide

Top Podcasts
The Bill Simmons Podcast
PTI
First Take
Marketplace
Comedy of the Week
The Bugle
How Did This Get Made?
Doug Loves Movies
Planet Money
TED Talks Daily
NBC Nightly News with Lester Holt
The World This Hour
Daily Boost Motivation and Coaching
Radiolab
Science Friday
This American Life
Criminal
Sword and Scale
In The Dark
Player FM logo
Help/FAQ | Upgrade | Advertise
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2024 | Sitemap | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox