News & Articles

Our articles and guides on how to protect your startup from cybercriminals

Read about all the security issues that we find during our automated security reviews, and how to solve them.

Latest Articles

All
ISO 27001
All
SOC 2
All
Vulnerabilities
All
Mitigations

Prepare a checklist for employee onboarding / offboarding and ensure HR, IT, and hiring managers follow it

Gaining the trust of potential corporate customers is crucial for the success and growth of startups. One effective way to establish this trust is by achieving SOC 2 compliance. In this guide, we will delve into why SOC 2 compliance matters, and offer a comprehensive checklist for employee onboarding and offboarding - a crucial aspect of SOC2 compliance

SOC 2

Ensure employees sign NDAs / confidentiality agreements (store them in Google Drive, folder per employee)

As a startup founder, gaining the trust of corporate customers is paramount for the success and growth of your business. One crucial way to establish and showcase your commitment to data security is through SOC 2 compliance. In this guide, we'll delve into the significance of SOC 2 compliance, provide real-world examples, and present a detailed step-by-step manual for ensuring employees sign NDAs (Non-Disclosure Agreements) or confidentiality agreements and securely storing them in Google Drive.‍

SOC 2

Hold periodic (typically quarterly) executive management meetings (summarize and store meeting minutes in Google Drive + calendar invitations)

In the dynamic landscape of business today, earning the trust of potential corporate customers is paramount. Achieving SOC2 compliance can be a significant step in this direction. In this guide, we will delve into the importance of SOC2 compliance, provide examples of its impact, and offer a detailed step-by-step manual on holding periodic executive management meetings – a crucial aspect of SOC2 compliance.

SOC 2

Publish detailed job descriptions publicly (website career page / LinkedIn)

One effective way for startups to establish trust and credibility is by achieving SOC 2 compliance, a framework designed to ensure that companies securely manage and protect customer data. In this guide, we will explore why SOC 2 compliance is crucial, provide examples of its impact, and offer a detailed step-by-step manual on one of its key requirements: publishing detailed job descriptions publicly.

SOC 2

Prepare organizational chart (without employee names, only roles, departments, and reporting lines), review and update it periodically (at least once a year)

Achieving SOC 2 compliance is a crucial step in demonstrating your commitment to safeguarding sensitive information. SOC 2 is a framework designed to ensure that organizations handle data securely and with integrity. In this guide, we'll focus on a specific aspect of SOC 2 compliance – preparing and periodically updating your organizational chart.

SOC 2

Hold periodic (typically quarterly) BOD meetings (summarize and store meeting minutes in Google Drive + calendar invitations)

One powerful way for startups to establish trust is by achieving SOC 2 compliance, a framework designed to manage and secure sensitive information. In this guide, we'll delve into why SOC 2 compliance is crucial, provide examples of its impact, and present a step-by-step manual for holding periodic Board of Directors (BOD) meetings—a key component of SOC 2 compliance.

SOC 2