Podcasts about drata

What happens when a seasoned entrepreneur tackles one of the biggest security challenges for startups? Daniel Marashlian, Co-Founder and CTO of Drata, built a billion-dollar company by automating security audits. In this episode, he breaks down compliance headaches, AI's role in security, and why automation is the future. Daniel Marashlian: https://www.linkedin.com/in/danielzev/ Drata: https://drata.com/ Jon McLachlan: www.linkedin.com/in/jon-mclachlan Sasha Sinkevich: www.linkedin.com/in/aliaksandr-sinkevich YSecurity: www.ysecurity.io

Conor Freeman (x.com/conorfrmn) stole money online. Lot's of it. In this episode we talk with him, and hear how he did it, why he did, and what he spent it on.Conor's website: https://conorfreeman.ieConor's X: https://x.com/conorfrmnSponsorsSupport for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allowlisting and Ringfencing™, you gain a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker® provides Zero Trust control at the kernel level that enables you to allow everything you need and block everything else, including ransomware! Learn more at www.threatlocker.com.Support for this show comes from Drata. Drata streamlines your SOC 2, ISO 27001, PCI DSS, HIPAA, GDPR & many other compliance frameworks, and provides 24-hour continuous control monitoring so you focus on scaling securely. Listeners of Darknet Diaries can get 10% off Drata and waived implementation fees at drata.com/darknetdiaries.Support for this show comes from ZipRecruiter. ZipRecruiter has solved the hiring problem. Employers prefer it the most for so many reasons. Let's start by telling you about their matching technology. They work hard to find the best candidates for your needs, and will instantly show you results once you post a job listing. ZipRecruiter will speed up your hiring process. See it for yourself at www.ziprecruiter.com/DARKNET.Sources https://www.cbc.ca/news/canada/toronto/kidnapping-toronto-businessman-cryptocurrency-1.7376679 https://www.irishtimes.com/news/crime-and-law/courts/circuit-court/man-jailed-for-role-in-2-million-cryptocurrency-theft-1.4411641 https://www.irishtimes.com/news/crime-and-law/dun-laoghaire-man-could-face-108-year-us-prison-term-over-alleged-hacking-and-wire-fraud-1.3887715 https://www.sundayworld.com/crime/irish-crime/irish-authorities-to-transfer-2m-in-stolen-cryptocurrency-back-to-us-owners-after-cab-probe/40576219.html

In this episode, Morgan shares her unique approach to categorizing deals and emphasizes the importance of a robust pipeline. She talks about her successful collaboration with her SDR, her disciplined sales strategy, and her innovative use of tools like Crossbeam and Gong. Morgan also highlights the critical roles of relationship building and trust, both within the sales team and with clients, stressing the importance of in-person interactions, even in our increasingly virtual world. Learn more at top1.fm/184

As enterprises look to harness data that stems and flows through diverse and dispersed source and end-points, robust practices around storing, processing, access, availability, reliability and security need to be ensured, driving demand for compliance-automation platforms. In this episode of the Tech Disruptors podcast, Drata CEO Adam Markowitz joins Sunil Rajgopal, senior software analyst at Bloomberg Intelligence, to discuss the security and compliance-automation product landscape, the potential market opportunity and growing role of AI. The two also talk about Drata's product journey, go-to-market strategy and customer expansion.

In this exciting episode we sit down with Taylor, founder of Eden Data, to discuss his incredible pivot from corporate life to entrepreneurship. Taylor shares the bold decision to quit his job just before the pandemic hit, leading him to turn to Upwork. From gamifying client acquisition to navigating the challenges of scaling a bootstrapped startup, Taylor reveals the highs and lows of his journey. Tune in to hear how he built a successful cybersecurity company, all while staying grounded with lessons on growth, community, and the importance of setting your own scoreboard. About our speaker: Taylor Hersom is the Founder and CEO of Eden Data, the leading cybersecurity firm from SOC 2 to IPO. The Texas-native Deloitte-veteran has built Eden Data into a team of 30+ ex-Big 4 security advisors with 200+ clients including Zendesk and Kindbody. The firm is the back-to-back winner of Drata's Partner-of-the-Year award. This episode is brought to you with support from Netsuite. Learn more at Netsuite.com/scale --- Support this podcast: https://podcasters.spotify.com/pod/show/uncharted1/support

Dive deep into the world of cybersecurity and compliance with Daniel Marashlian, Co-Founder & CTO at Drata. With a string of successful ventures to his name - from Portfolium to Pelotonics - Daniel is truly a serial entrepreneur. In this episode, uncover the mission behind Drata, the platform revolutionizing the compliance landscape with automation. As they assist countless companies in navigating SOC 2, GDPR, and more, learn about Drata's commitment to helping businesses earn and sustain trust. Join us for a captivating journey from Daniel's early tech ventures to the global impact of Drata today. This show is supported by Match Relevant. A company that helps venture-backed Startups find the best people available in the market, who have the skills, experience, and desire to grow. With over a decade of experience in recruitment across multiple domains, they give people career options to choose from in their career journey. Learn more about Match Relevant at matchrelevant.com

SummaryLucas Price interviews seasoned sales leader Adam Aarons, renowned for his tenure as CRO at Okta and his roles at companies like BladeLogic and Drata. They dig into strategies for building elite sales teams, focusing on effective sales processes, operational visibility, and continuous enablement. Adam shares insights on navigating new market segments, the significance of discovery, and the importance of structured sales methodologies. Additionally, he offers tips on hiring the right talent and leveraging mentorship. This episode is packed with actionable advice for sales leaders aiming to drive high performance in their teams.Take Aways Operational Visibility: Establishing a strong operations framework is vital for early detection of potential pitfalls in your sales strategy.Continuous Enablement: Constantly iterating and improving your team's skills and processes is key to maintaining high performance.Role of a Champion: Differentiate between a true champion, who has power and influence, and a coach, who merely advises without substantial impact.Focused Discovery: Effective discovery involves understanding the prospect's core problems and why they should act now and choose your solution.Hiring Principles: Look for intelligence, coachability, drive, and will in potential hires to form a resilient and high-performing sales team.Learn More: https://www.yardstick.team/Connect with Lucas Price: linkedin.com/in/lucasprice1Connect with Dr. Jim: linkedin.com/in/drjimkConnect with Adam Aarons: linkedin.com/in/adam-aarons-438111Mentioned in this episode:BEST Outro

Today Marc is joined in the studio by the VP EMEA at Drata.

In this episode of "Women in B2B Marketing," host Jane Serra chats with B2B rockstar Sydney Sloan, CMO of Drata, about the power of personal branding and networking for career advancement. Sydney also shares her B2B marketing journey, emphasizing the need to understand the market and be passionate about solving customer problems. She advises listeners on building networks, engaging with industry influencers, and the steps to transition into advisory and board roles. Sydney walks us through:the importance of personal branding and its impact on career growthher journey in B2B marketing and transitioning into techbuilding a strong professional network and engaging with industry influencerstips for effective networking, making relevant connections, and the importance of being prepared for mentoring sessionsexploring career goals and the value of seeking advice from multiple sourcesovercoming discomfort in networking situations and the importance of putting oneself out theretransitioning into advisory and board rolesnavigating the competitive job-seeking landscapeasking the right questions when looking for a new role to ensure the fit is right, and the value of regularly assessing if the role still feels rightunderstanding one's worth and leveraging networks for job opportunitiesKey Links:Guest: Sydney Sloan - https://www.linkedin.com/in/sydsloan/Host: Jane Serra - https://www.linkedin.com/in/janeserra/ Women in Revenue - https://womeninrevenue.org/Breaking the Tech Ceiling - https://www.breakingthetechceiling.com/

In this episode, we interview Elliot Volkman, the Marketing Director at Drata and host of the "Adopting Zero Trust" and "Mastering the Art of Failing" podcasts. Elliot brings a unique blend of journalism background and marketing expertise, particularly in the cybersecurity domain, to discuss enhancing brand identity through internal thought leadership. What you'll learn in this episode: How to identify and elevate internal experts to enhance brand visibility and authenticity. Strategies for creating a more relaxed and genuine content environment that reflects your brand's true ethos. Insights into balancing professionalism with personality to engage audiences more effectively. Techniques for leveraging AI to augment content creation without losing the human touch.

Today we're talking to Gil Feig, Co-Founder at Merge, and Daniel Marashlian, Co-Founder & CTO at Drata. Gil and Daniel explore automating compliance, enhancing SaaS support, and the art of building high-EQ tech teams. Their conversation is a roadmap for aspiring CTOs, emphasizing innovation and strategic partnerships. A must-listen for those navigating the tech startup ecosystem. All of this right here, right now, on the Modern CTO Podcast!  To learn more about Merge, visit their website here. To learn more about Drata, visit their website here. Have feedback about the show? Let us know here. Produced by ProSeries Media. For booking inquiries, email booking@proseriesmedia.co

3 Things You'll Learn About Sending Prospecting Videos on LinkedIn to Improve Your Efficiency: What to include in your prospecting videos What to say in your video When to send a video ---- Here's one example of a video that Kayla uses, and you can start using now. ---- Join me in this episode as we dive into Kayla's strategies and techniques for booking meetings with prospecting videos on LinkedIn. Kayla Cytron-Thaler is a Partner Development Manager at Drata. Kayla's notable achievements on her journey include: Sending more than 5,000 prospecting videos Now sends around 200 per month at Drata Connect with Kayla on LinkedIn: https://www.linkedin.com/in/kayla-/ ---

The #1 crime which results in the biggest financial loss is BEC fraud. The #2 crime is pig butchering. Ronnie Tokazowski https://twitter.com/iHeartMalware walks us through this wild world. Sponsors Support for this episode comes from NetSuite. NetSuite gives you visibility and control of your financials, planning, budgeting, and of course - inventory - so you can manage risk, get reliable forecasts, and improve margins. NetSuite helps you identify rising costs, automate your manual business processes, and see where to save money. KNOW your numbers. KNOW your business. And get to KNOW how NetSuite can be the source of truth for your entire company. Visit www.netsuite.com/darknet to learn more. Support for this show comes from Drata. Drata streamlines your SOC 2, ISO 27001, PCI DSS, HIPAA, GDPR & many other compliance frameworks, and provides 24-hour continuous control monitoring so you focus on scaling securely. Listeners of Darknet Diaries can get 10% off Drata and waived implementation fees at drata.com/darknetdiaries. This show is sponsored by Shopify. Shopify is the best place to go to start or grow your online retail business. And running a growing business means getting the insights you need wherever you are. With Shopify's single dashboard, you can manage orders, shipping, and payments from anywhere. Sign up for a one-dollar-per-month trial period at https://shopify.com/darknet. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Jake Seid is the Co-Founder and General Partner at Ballistic Ventures, a VC firm focused on early-stage cybersecurity and security-related venture investments, with a debut fund of $300M. Before working at Ballistic, Jake was a Managing Director at Lightspeed Venture Partners and founder and Managing Director at Stone Bridge Ventures—his portfolio includes Blend, Brex, Bolt, Abnormal Security, Carta, Cresta.ai, Drata, and more.    You can learn more about:  Investing trends in the cybersecurity space Starting and building a successful fund  How to attract the best founders  ===================== YouTube: @GraceGongCEO Newsletter: @SmartVenture LinkedIn: @GraceGong TikTok: @GraceGongCEO IG: @GraceGongCEO Twitter: @GraceGongGG ===================== Join the SVP fam with your host Grace Gong. In each episode, we are going to have conversations with some of the top investors, superstar founders, as well as well-known tech executives in silicon valley. We will have a coffee chat with them to learn their ways of thinking and actionable tips on how to build or invest in a successful company.

Sales leaders often diligence the CEO, but they quickly realize they should've done the same for the CMO. Same for the other way around. It's a topic not even Mark has yet to fully codify. Host Mark Roberge is joined by Sydney Sloan (CMO, Drata) and Adam Aarons (CRO, Drata) to discuss how the two navigated their way into a unicorn-worthy partnership. They'll talk about: The importance of marketing and sales alignment How to evaluate potential team members when joining a company Back channelling for honest feedback Why go-to-market alignment is so important for team dynamics The Science of Scaling is a HubSpot Original Podcast // Brought to you by The HubSpot Podcast Network in collaboration with HubSpot For Startups // Produced by Matthew Brown.

Have you ever heard of trenches within a startup? Maybe you're in the midst of them currently. Either way, in this episode, we dive into the dynamic world of startups, growth, and the intriguing synergy between sales and marketing.We'll discuss the bonds that form during the scrappy startup grind and how these connections can shape your journey and lead to remarkable insights.Our guest, Adam Aarons, Chief Revenue Officer at Drata, spills the secrets of successful sales and marketing collaboration within the startup world. Because in the trenches of startups, where growth and innovation collide, it's the collaboration and connections between sales and marketing that lead to success.To hear more from Adam, tune in to this week's episode.Resource: FounderJar

This week's guest: Jackie Pimentel As Sr. Global Marketing Director, Jackie Pimentel oversees Creators, Reels, and Threads, with over 15 years of experience leading product marketing, monetization, and business operations teams at Meta as well as Pinterest. She is a strong advocate for the creator economy with deep expertise in reaching digital creators. Jackie is also a seasoned investor with a focus on e-commerce enablement companies such as CaaStle, Drata, Cents, Odeko, Bolt, and others. ––––––––––––––––––––––– Where to find Jackie: Threads: @jaxpim LinkedIn: https://www.linkedin.com/in/jackie-pim/ — Where to find James and Daniel: LinkedIn: James: https://www.linkedin.com/in/jamesborow/ Daniel: https://www.linkedin.com/in/danieldruger/ Twitter:  James: https://twitter.com/jamesborow Daniel: https://twitter.com/ddruger — Don't miss an episode of Taking Inventory. Make sure to follow us on LinkedIn and Twitter! Subscribe to our newsletter: https://www.takinginventorypod.com/ 

Mix TikTok with facial recognition, and you've got a doxxing nightmare, T-Mobile users report bizarre behaviour in their accounts, and a Windows flaw provides a new means of infecting users.All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:T-Mobile customer reports privacy breach - Twitter.T-Mobile US exposes some customer data – but don't call it a breach - The Register.T-Mobile denies new data breach rumors, points to authorized retailer - Bleeping Computer.Connectivity Source - Despite appearances, don't confuse it with T-Mobile.ThemeBleed exploit is another reason to patch Windows quickly - MalwareBytes.If I Embarrass My Baby on TikTok, Will He Stay My Baby Forever? - New York Times.They Gossiped At Brunch. Now There's a Mob After Them - Rolling Stone.The End of Privacy is a Taylor Swift Fan TikTok Account Armed with Facial Recognition Tech - 404 Media.Egg crack challenge,the last baby is so cute - YouTube.Trailer for “The Deepest Breath” - YouTube.“The Deepest Breath” - Netflix.Nitpick: Meaningless communications.Naked Security.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Kolide – Kolide ensures that if your device isn't secure it can't access your cloud apps. It's Device Trust for Okta. Watch the demo today!Gigamon – Download the Gigamon Hybrid Cloud Security Survey to learn about the hidden dangers of encrypted traffic.Drata – With over 14 frameworks including SOC2, GDPR, HIPAA, and ISO 27001, Drata gets you audit-ready for crucial security standards needed to scale your business. As a listener to Smashing Security you can save 10% off Drata and have implementation fees...

3 things you'll learn in this episode: The different prospecting sequences used by Stone How he creates prospecting messaging How to prospect security personas Stone Gomez is Drata's top-performing Sales Development Representative (SDR). Stone's results: Crushed it with 150% in Q1. Did it again in June with 150%. And yep, hit 100% more than once. Connect with Stone: https://www.linkedin.com/in/stone-gomez-347b71135/ ---

Sidney Waterfall hosts today, joined by Sydney Sloan, CMO of Drata, to talk about timing in your career - how to know the right time to step away and finding the next right opportunity. She discusses her own experience of taking time off to recharge and reflect before starting her new role at Drata. Sydney also talks about her favorite stage of growth and the importance of finding a company with a strong product-market fit. She emphasizes the need for balance in life and the value of building relationships and connections. Sydney shares her approach to measuring the impact of marketing and the importance of focusing on revenue and efficiency. She also discusses the changing landscape of marketing, including the role of AI and the need for digital sophistication.

Join us for an enlightening conversation with Elliot Volkman, Director of Brand, Content, and Community at Drata, as we uncover the impactful combination of personal branding, positivity, and kindness in advancing your company's mission.

Fortinet VPN bug tops CISA's list of most exploited vulnerabilities in 2022 Chrome malware Rilide targets enterprise users via PowerPoint guides Researchers discover bypass for recently fixed Ivanti EPMM vulnerability Thanks to today's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. Visit Opal.dev. For the stories behind the headlines, head to CISOseries.com.

Link to Blog Post This week's Cyber Security Headlines – Week in Review, July 31-August 4, is hosted by Rich Stroffolino with guest, Jeff Hudesman, CISO, Pinwheel Thanks to our show sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. Visit opal.dev.

Australian Senate recommends banning WeChat US company accused of aiding APT Hacking group to detail P2P protocol at DEF CON  Thanks to today's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. Visit Opal.dev.

Musk sues disinformation researchers for driving away advertisers Researchers claim cloud host facilitated state-backed cyberattacks UK spy agencies want to relax ‘burdensome' laws on AI data use Thanks to today's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. Visit Opal.dev. For the stories behind the headlines, visit CISOseries.com.

White House releases National Cyber and Workforce Education Strategy  Latest DeFi exploit sees millions in losses No link found between cyber insurance and paying ransoms Thanks to today's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. Visit Opal.dev.

Israel's largest oil refinery website offline amid cyber attack claims TSA renews cybersecurity guidelines for pipelines CISA AND Australia warn of IDOR vulnerabilities after major breaches Thanks to today's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. Visit Opal.dev. For the stories behind the headlines, head to CISOseries.com.

This week on Hacker And The Fed new cyber security labels proposed by the US government could help us buy our new devices, an employee exposes thousands of intelligence and defense employees, Google may be restricting internet access to some employees to reduce their cyber attack risk, a hacker infects his own computer, and Google says an Apple employee found a zero-day but didn't report it, and we answer listener questions about our phones getting searched and email encryption. Links from the episode:  White House teams with Amazon, Google and Qualcomm on cybersecurity labels for gadgets https://www.cnbc.com/2023/07/18/us-cyber-trust-labels-will-help-consumers-pick-safer-smart-devices.html   Google exposes intelligence and defense employee names in VirusTotal leak https://therecord.media/virustotal-user-email-addresses-leaked-google-military-intelligence   Google restricting internet access to some employees to reduce cyberattack risk https://www.cnbc.com/2023/07/18/google-restricting-internet-access-to-some-employees-for-security.html   Black Hat Hacker Exposes Real Identity After Infecting Own Computer With Malware https://www.securityweek.com/black-hat-hacker-exposes-real-identity-after-infecting-own-computer-with-malware/   IT Security Analyst Jailed for Impersonating as a Hacker in Own Company https://cybersecuritynews.com/it-security-analyst-jailed/   Google says Apple employee found a zero-day but did not report it https://techcrunch.com/2023/07/20/google-says-apple-employee-found-a-zero-day-but-did-not-report-it/ https://news.ycombinator.com/item?id=36803537   Microsoft Cybersecurity Analyst Professional Certificate https://www.coursera.org/professional-certificates/microsoft-cybersecurity-analyst   Cybersecurity Expert Kevin David Mitnick died https://www.dignitymemorial.com/obituaries/las-vegas-nv/kevin-mitnick-11371668   Listener Questions: https://www.theverge.com/2021/8/18/22630439/apple-csam-neuralhash-collision-vulnerability-flaw-cryptography   Support our sponsors: Go to JoinDeleteMe.com/FED and use the code FED20 for 20% off Go to drata.com/partner/hacker-fed and get 10% off Drata and waived implementation fees   Get your Hacker and the Fed merchandise at hackerandthefed.com

Adam Aarons is a seasoned sales executive with extensive knowledge of the risk and compliance space. Adam is well known and admired for his time as the CRO of Okta, during which Okta grew from a $1M startup to a publicly traded $300M+ ARR category winner. Adam was previously an active advisor to Drata, and has now joined the company full time to drive revenue at scale as CRO.In this conversation with John McMahon, Adam discusses the keys to scaling a salesforce, including productivity per head, average deal size, and ramp times. He emphasizes the importance of understanding the ideal customer profile and where they are located. Adam also highlights the critical role of qualification in the sales process, focusing on the ICE framework (Identify pain, Champion, Economic buyer). He stresses the need for continuous discovery and the importance of establishing decision criteria. Adam shares insights on forecasting, metrics, and the value of customer success in reducing churn and driving revenue. He also discusses the challenges and lessons learned when transitioning from a sales rep to a manager, VP, and CRO on this episode of Revenue Builders.HERE ARE SOME KEY SECTIONS TO CHECK OUT:[0:00:42] Introduction to Drata and its automation of compliance data collection[0:49:52] Using an automation platform to coordinate customer outreach and marketing campaigns[0:55:18] The need for effective communication and expectation setting between managers[1:00:55] The importance of coaching for young CROsHIGHLIGHT QUOTES[0:57:08] "Having respect and empathy for people that haven't done it before, that you're working with to make sure that they understand the why versus just saying, hey. Trust me, let me go do my job like I know what I'm doing.”[0:52:03] "If you're a leader and you're doing this work, it's hard work. You should expect it to be hard. You should enjoy the grind and enjoy the challenges because you learn so much in these jobs that even with the things that you and I have talked about, there's so much more depth that you could dive down into."Learn more about Adam through this link:LinkedIn: https://www.linkedin.com/in/adam-aarons-438111/Check out John McMahon's book here: https://www.amazon.com/Qualified-Sales-Leader-Proven-Lessons/dp/0578895064

Former Prime Minister Boris Johnson wants to hand over his WhatsApp messages - or does he? And a couple of fun-loving girls from Aberdeen have come up with a sinister twist on sextortion scams.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley (from a mystery location) and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:The UK Covid-19 Inquiry.Court orders ministers to hand Boris Johnson's WhatsApps to Covid inquiry - The Guardian.Boris Johnson ‘has forgotten' passcode for phone wanted by Covid inquiry - The Guardian.The Lockdown Files: Matt Hancock rejected expert advice on care home testing, WhatsApp messages reveal - The Telegraph.Boris Johnson's Personal Phone Number Has Been Hiding in Plain Sight Online For 15 Years - Vice.Party girls netted £120,000 from terrified men in ‘sextortion' scam -The Times.Exclusive: Women posed as underage girls to blackmail men out of nearly £122000 -Press and Journal.Musicless music video of Lionel Richie's “Hello” - YouTube.Musicless music video of Rolling Stones performing live in 1964 - YouTube.Intrigue: Burning Sun - BBC podcast.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Kolide – Kolide ensures that if your device isn't secure it can't access your cloud apps. It's Device Trust for Okta. Watch the demo today!Drata – With over 14 frameworks including SOC2, GDPR, HIPAA, and ISO 27001, Drata gets you audit-ready for crucial security standards needed to scale your business. As a listener to Smashing Security you can save 10% off Drata and have implementation fees waived.SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via

This week on Hacker And The Fed you can't always count on Google for the right telephone number for an airline, an American cloud based directory as a service platform announces that they were hacked by a state sponsored threat actor, millions of US military emails may be ending up in the wrong hands, a new ransomware looks like a windows update, we answer listener questions, and Hector tells a fascinating story about a hacking methodology. Links from the episode: Airline Fake Contact Number on Google Maps https://twitter.com/Shmuli/status/1680669938468499458 https://twitter.com/SwiftOnSecurity/status/1680926780599812098   JumpCloud discloses breach by state-backed APT hacking group https://www.bleepingcomputer.com/news/security/jumpcloud-discloses-breach-by-state-backed-apt-hacking-group/ JumpClouds IOCs - https://jumpcloud.com/support/july-2023-iocs   Domains like army․ml, pentagon․ml, navy․ml and af․ml all have Mail Exchange records pointing to 'handle․catchemail․ml' https://twitter.com/mikko/status/1680947795862200325   Watch out for this new malicious ransomware disguised as Windows updates https://www.foxnews.com/tech/watch-out-new-malicious-ransomware-disguised-windows-updates https://www.trendmicro.com/en_id/research/23/g/tailing-big-head-ransomware-variants-tactics-and-impact.html   Listener Questions https://www.lsu.edu/mediacenter/news/2023/06/13-cyber-clinic.php   Support our sponsors: Go to JoinDeleteMe.com/FED and use the code FED20 for 20% off Go to drata.com/partner/hacker-fed and get 10% off Drata and waived implementation fees Get your Hacker and the Fed merchandise at hackerandthefed.com

USB drive malware attacks spiking again in first half of 2023 Users of Honeywell Experion DCS platforms urged to patch 9 vulnerabilities immediately Ransomware gangs have extorted $449 million this year Thanks to this week's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. For the stories behind the headlines, head to CISOseries.com.

Link to Blog Post This week's Cyber Security Headlines – Week in Review, July 10-14, is hosted by Sean Kelly with our guest, Yaron Levi, CISO, Dolby Thanks to our show sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. Visit Opal.dev. All links and the video of this episode can be found on CISO Series.com

Going for a jog can be bad for your privacy (but even worse for your health), and Britain's consumer finance champion finds his face is being faked.All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Russian commander shot dead after posting runs on Strava running app - Kyiv Post.Martin Lewis felt 'sick' seeing deepfake scam ad on Facebook - BBC News.How synthetic media, or deepfakes, could soon change our worldeing deepfake scam ad on Facebook - 60 Minutes on YouTube.Nicki Minaj wants to delete the “whole internet” after viral AI deepfake video -Technology Inquirer.Fears grow of deepfake ID scams following Progress hack - Ars Technica.“Deep Fake Neighbour Wars”: ITV's comedy shows how AI can transform popular culture -The Conversation.”My Old School” - BBC Scotland.”My Old School” trailer - YouTube.MP doesn't know whether she attended Downing St Party - YouTube.”Non-Censored” with Rosie Holt podcast - Audioboom.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Kolide - Kolide ensures that if your device isn't secure it can't access your cloud apps. It's Device Trust for Okta. Watch the demo today!Sysdig - Is your cloud secure? Not without runtime insights! Sysdig delivers the industry's ONLY complete, consolidated Cloud-Native Application Protection Platform (CNAPP) - powered by runtime insights - to prioritize critical risks and stay ahead of unknown threats. Learn how runtime insights reduces fatigue so developers can focus on delivering software and your security teams can focus on other demands.Drata – With over 14 frameworks including SOC2, GDPR, HIPAA, and ISO 27001, Drata gets you audit-ready for crucial security standards needed to scale your business. As a listener to Smashing Security you can save 10% off Drata and have implementation fees waived.SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on

This week on Hacker And The Fed your lightbulbs may be giving away the location of your house, could Microsoft end ransomware right now? Also, voice authentication may be broken, the latest ransomware attack shows us the important of logistics security, convenience has once again jeopardized Google authenticator security, and a listener shares a wild car theft story. Links from the episode: Your lightbulbs may be giving out your exact location twitter.com/haxrob/status/1676416949499338752   Microsoft Can Fix Ransomware Tomorrow darkreading.com/vulnerabilities-threats/microsoft-can-fix-ransomware-tomorrow   Cybercriminals can break voice authentication with 99% success rate helpnetsecurity.com/2023/07/06/voice-authentication-insecurity/   INTERPOL Nabs Hacking Crew OPERA1ER's Leader Behind $11 Million Cybercrime thehackernews.com/2023/07/interpol-nabs-hacking-crew-opera1ers.html   Japan's biggest port, Nagoya, hit by suspected cyberattack asia.nikkei.com/Business/Technology/Japan-s-biggest-port-Nagoya-hit-by-suspected-cyberattack   Raising concerns over Google Authenticator's new features techradar.com/pro/raising-concerns-over-google-authenticators-new-features   Trinidad and Tobago facing outages after cyberattack therecord.media/trinidad-tobago-hit-with-cyberattack   Listener Questions ksltv.com/563455/police-release-images-of-suspect-who-broke-into-familys-car-at-airport-then-their-home/   Support our sponsors: Go to JoinDeleteMe.com/FED and use the code FED20 for 20% off Go to drata.com/partner/hacker-fed and get 10% off Drata and waived implementation fees

What we know about NATO cyber pledges  Tax prep companies “recklessly” shared data Report finds decrease in crypto crime Thanks to this week's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale.

Silk Road's senior advisor sentenced to 20 years in prison 11 million HCA patients impacted by data breach Google hit with lawsuit alleging it stole user data to train its AI tools Thanks to this week's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. For the stories behind the headlines, visit CISOseries.com.

JumpCloud resets customer API keys Would you be interested in a slightly used dark web market?  US and EU agree on new data transfer agreement Thanks to this week's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale.

New ‘Big Head' ransomware displays fake Windows update alert RedEnergy stealer-as-a-ransomware threat targeting energy and telecom sectors Three new MOVEit bugs spur CISA warning as more victims report breaches Thanks to this week's episode sponsor, Opal Opal is the data-centric identity platform. Identity is one of the last great enterprise frontiers. It's fragmented with legacy architecture. Opal's mission is to empower enterprises to understand and calibrate access end to end. The best security teams from companies like Databricks, Figma, Blend, and Drata use Opal to build identity security for scale. For the stories behind the headlines, head to CISOseries.com.

This week on Hacker And The Fed your car may be collecting up to 25 GB per hour of data about you and a new malware payload vector is using DNS, what is “encryptionless ransomware”. We also answer listener questions about a variety of topics, including how to prepare for a cybersecurity career in the US government, banking security, and hack-backs. Links from the episode: How Your New Car Tracks You https://www.wired.com/story/car-data-privacy-toyota-honda-ford/   DNS TXT Records Can Be Used by Hackers to Execute Malware https://cybersecuritynews.com/dns-txt-records-to-execute-malware/?amp Encryption-less ransomware: Warning issued over emerging attack method for threat actors https://www.itpro.com/security/ransomware/encryption-less-ransomware-warning-issued-over-emerging-attack-method-for-threat-actors   Support our sponsors: Go to JoinDeleteMe.com/FED and use the code FED20 for 20% off Go to drata.com/partner/hacker-fed and get 10% off Drata and waived implementation fees

There's some funny business going on on Google, and Zuckerberg's $14 billion bet on the metaverse is beginning to look a little childish...All this and more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:Google sues alleged scammer over fake business and review scheme - The Verge.Meta to Lower Age for Users of Virtual Reality Headset to 10 From 13 - New York Times.Introducing New Parent-Managed Meta Accounts for Families - Meta Blog.Keep Connected - ages 10–14 - Keep Connected.The Metaverse Police: A VR content moderator shares his insights - Mixed News.“Untold: The Girlfriend Who Didn't Exist” - Netflix.Tommy Siegel - Some candy hearts comics I drew, a thread - Twitter.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Bitwarden – Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.Kolide – Kolide ensures that if your device isn't secure it can't access your cloud apps. It's Zero Trust for Okta. Watch a demo today!Drata – With over 14 frameworks including SOC2, GDPR, HIPAA, and ISO 27001, Drata gets you audit-ready for crucial security standards needed to scale your business. As a listener to Smashing Security you can save 10% off Drata and have implementation fees waived.SUPPORT THE SHOW:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via Patreon or Apple Podcasts for ad-free episodes and our early-release feed!FOLLOW US:Follow us on Twitter at @SmashinSecurity, or Mastodon, or on the

Deviant Ollam is a physical penetration specialist. That means he's paid to break into buildings to see if the building is secure or not. He has done this for a long time and has a lot of tricks up his sleeve to get into buidings. In this episode we hear 3 stories of him breaking into buildings for a living. You can find more about Deviant on the following sites: https://twitter.com/deviantollam https://www.instagram.com/deviantollam https://youtube.com/deviantollam https://defcon.social/@deviantollam https://deviating.net/ Sponsors Support for this show comes from ThreatLocker. ThreatLocker has built-in endpoint security solutions that strengthens you're infrastructure from the ground up with a zero trust posture. ThreatLocker's allow-listing give you a more secure approach to blocking exploits of known and unknown vulnerabilities. ThreatLocker provices zero trust control at the kernel level. Learn more at www.threatlocker.com. This show is sponsored by Packetlabs. They've created the Penetration Testing Buyer's guide - a comprehensive resource that will help you plan, scope, and execute your Penetration Testing projects. Inside, you'll find valuable information on frameworks, standards, methodologies, cost factors, reporting options, and what to look for in a provider. https://guide.packetlabs.net/. Support for this show comes from Drata. Drata streamlines your SOC 2, ISO 27001, PCI DSS, HIPAA, GDPR & many other compliance frameworks, and provides 24-hour continuous control monitoring so you focus on scaling securely. Listeners of Darknet Diaries can get 10% off Drata and waived implementation fees at drata.com/darknetdiaries. Learn more about your ad choices. Visit podcastchoices.com/adchoices

In this episode, we are excited to welcome Troy Malone, the Co-Founder of Relevant, a company that helps SaaS startup founders successfully enter new markets. In this role, he supports founders in unlocking an unfair competitive advantage in new markets through a uniquely profitable marketing system. Throughout his 15-year career as a growth and scale-up business leader, Troy has helped companies like Evernote, Weebly, All-Turtles, mmhmm and Drata to scale internationally. He loves the challenge of building teams for hyper-growth. Troy also embodies the global mindset and cultural empathy of a true “interpreneur,” as proven by his successful expansion efforts to Europe, Latin America, and Asia. Here, we discuss how to hire the right people who will lead your global growth initiatives, the importance of going on “Localization Discovery Tours” to truly understand a market, and examples of unusual marketing and promotions campaigns Troy came up with that drove results in new markets. Get your copy of our Wall Street Journal Bestselling book, GLOBAL CLASS, a playbook on how to build a successful global business. https://www.amazon.com/Global-Class-Fastest-Growing-Companies-Globally/dp/1637742185 This episode is sponsored by our partner, ZEDRA. Learn more about how the ZEDRA team can support you in expanding to new markets at https://www.zedra.com Find our entire podcast episode library at https://www.globalclassbook.com/podcast

This week on Hacker And The Fed we catch up on some questions from our listeners: we discuss what a red teamer does, how the FBI works with other law enforcement agencies, how to upgrade your personal cyber security once you've got the basics down, and protecting children on the Internet. Support this episode's sponsors: Drata: Listeners of Hacker and the Fed can get 10% off Drata and waived implementation fees at drata.com/partner/hacker-fed BetterHelp: Hacker and the Fed is sponsored by BetterHelp. Visit BetterHelp.com/HATF today to get 10% off your first month. -- For more information on Chris and his current work visit naxo.com Follow Hector @hxmonsegur

Being a successful CRO isn't just about setting goals for the sales team and driving revenue. It's about having the right data and processes in place so that your sellers can collaborate and run revenue.   This is where partnering with the revenue operations team comes in to save the day.   On this episode of The Run Revenue Show, Adam Aarons, CRO at Drata, shares how he partnered with RevOps to gain a better understanding of what was happening within the business, identify areas of improvement, and make data driven decisions. You'll gain insight on why this is a crucial move and how it ultimately builds a culture of trust and collaboration.    Here's what's inside:  Focus on relationships + data: The best way to build both of these muscles? Adam says trust, transparency, and collaboration. Audit your processes: Is your team actually adhering to your processes? Does anyone need a refresher? This week, take time to ensure everyone is on the same page. Adam says it's how you'll strike revenue gold.  Clean up your data: Make a plan to clean up your data this week. Identify where your bad data lives, before it's too late. Adam says bad data is your biggest revenue killer.    Grab this week's Checklist   Check out RunRevenue.Pro for tips, playbooks, and advice for stopping revenue leak and achieving revenue precision.    See how Clari's Revenue Platform can help you win more deals, protect your customer base, and achieve revenue precision—even in a downturn.  → Clari.com  

The twisted tale of the two Teslas, and a deepfake sandwich.All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:B.C. man says he accidentally unlocked and drove someone else's Tesla using the app - Global News.A College Girl Found Deepfake Porn of Herself Online. Who Did It Shocked Her - Rolling Stone.Denmark Tries to Attract Tourists Using ChatGPT, Deepfakes, and Famous Paintings UK PC Mag.Deepfake Tools Are Made To Facilitate Harassment—So Why Are They Available in the App Store? - MSN.Spot the Deepfake - Microsoft.Sholay trailer - YouTube.Sholay: Review of the monumental Indian epic - YouTube.Rent or buy Sholay - YouTube Movies.Jazz Pianist Brad Mehldau Plays The Beatles - NPR.Brad Mehldau - Brad Mehldau website.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Bitwarden – Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.Kolide – Kolide ensures that if your device isn't secure it can't access your cloud apps. It's Zero Trust for Okta. Watch a demo today!Drata – With over 14 frameworks including SOC2, GDPR, HIPAA, and ISO 27001, Drata gets you audit-ready for crucial security standards needed to scale your business. As a listener to Smashing Security you can save 10% off Drata and have implementation fees waived.Support the show:Tell your friends and colleagues about “Smashing Security”, and leave us a review on Apple Podcasts or Podchaser.Become a supporter via

Scammers get pwned by a Canadian granny! Don't be seduced in a bar by an iPhone thief! And will the US Marshals be able to track down the villains who stole their data?All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Anna Brading.Plus don't miss our featured interview with Jason Meller of Kolide.Warning: This podcast may contain nuts, adult themes, and rude language.Episode links:They thought they could scam this Windsor grandmother of nearly $10K. She turned the tables on them - CBC.Canada grandma helps stop fraud scheme targeting senior citizens - BBC News.A Basic iPhone Feature Helps Criminals Steal Your Entire Digital Life - Wall Street Journal.Ransomware attack on US Marshals Service affects ‘law enforcement sensitive information' - CNN.Hackers steal sensitive law enforcement data in a breach of the U.S. Marshals Service - NPR.9 millionaires and billionaires with the most bizarre spending habits - Business Insider.Phishing still the leading way attackers breach security controls: IBM - IT World Canada.New White House cyber strategy picks a fight with ransomware - AXIOS. Happy Valley - BBC.My 80s TV.Everything Everywhere All at Once - IMDB.Smashing Security merchandise (t-shirts, mugs, stickers and stuff)Sponsored by:Bitwarden – Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing.Kolide – Kolide ensures that if your device isn't secure it can't access your cloud apps. It's Zero Trust for Okta. Watch a demo today!Drata – With over 14 frameworks including SOC2, GDPR, HIPAA, and ISO 27001, Drata gets you audit-ready for crucial security standards needed to scale your business. As a...

This week on Hacker And Fed we discuss a leaked ransomware negotiation, how Twitter's new verification system may improve security, and the NSA releases its best practices for securing your home network. Support this episode's sponsor, Drata. For 10% off and waived implementation fees visit drata.com/partner/hacker-fed. Links from the episode: pwndefend.com/2023/02/15/lockbit-3-0-and-royal-mail-chats-published/ dice.com/career-advice/cybercriminals-increase-recruiting-tech-and-it-pros-across-the-darknet gizmodo.com/facebook-instagram-verified-elon-musk-was-right-twitter-1850139933 media.defense.gov/2023/Feb/22/2003165170/-1/-1/0/CSI_BEST_PRACTICES_FOR_SECURING_YOUR_HOME_NETWORK.PDF -- For more information on Chris and his current work visit naxo.com Follow Hector @hxmonsegur

Stair-stepping into software entrepreneurship is a great way for developers to start their own businesses without taking on massive risks. Building a plugin on an established platform allows developers to leverage existing user bases and traffic to grow their business quickly, while also being aware of the risks associated with platform dependency, profit-sharing, and limited flexibility.My interview with Collen Schnettler: https://www.youtube.com/watch?v=PpcYTO5x3cYRob Walling's Stair-Stepping: https://robwalling.com/2015/03/26/the-stair-step-method-of-bootstrapping/Preetham Nath: https://www.preetamnath.com/blog/grow-shopify-micro-saas-to-25k-mrr-in-14-monthsThe blog post: https://thebootstrappedfounder.com/stair-stepping-with-plugins-platforms-to-build-on/The podcast episode: https://share.transistor.fm/s/51643e63The video: https://www.youtube.com/watch?v=PjOHqn4PJZMYou'll find my weekly article on my blog: https://thebootstrappedfounder.comPodcast: https://thebootstrappedfounder.com/podcastNewsletter: https://thebootstrappedfounder.com/newsletterMy book Zero to Sold: https://zerotosold.com/My book The Embedded Entrepreneur: https://embeddedentrepreneur.com/My course Find your Following: https://findyourfollowing.comFind me on Twitter: https://twitter.com/arvidkahl/This episode is sponsored by Drata.

Arvid shares what writing can bring to the founder table.Self-funded entrepreneurs can benefit from honing their writing skills, as it can be used to communicate ideas and thoughts clearly, attract attention, foster relationships, and build a personal brand. The blog post: https://thebootstrappedfounder.com/writing-for-founders/The podcast episode: https://share.transistor.fm/s/735924e4The video: https://youtu.be/1R5scFwM5XwYou'll find my weekly article on my blog: https://thebootstrappedfounder.comPodcast: https://thebootstrappedfounder.com/podcastNewsletter: https://thebootstrappedfounder.com/newsletterMy book Zero to Sold: https://zerotosold.com/My book The Embedded Entrepreneur: https://embeddedentrepreneur.com/My course Find your Following: https://findyourfollowing.comFind me on Twitter: https://twitter.com/arvidkahl/This episode is sponsored by Drata.

Negative reviews are an important part of the customer experience, as they provide valuable feedback to creators about how their product or service is being perceived. Reviews can be a source of frustration for founders, as they may not reflect the quality of the work, but rather the disconnect between the customer's expectation and the reality of the product. It is important for creators to stay mindful of how they position their products in the marketplace and ensure that their messaging aligns with the customer's experience.00:00:00 Negative Reviews00:01:11 Reality vs Expectation00:02:43 Positioning ErrorsThe blog post: https://thebootstrappedfounder.com/negative-reviews-are-good-for-you/The podcast episode: https://share.transistor.fm/s/46b3421dThe video: https://www.youtube.com/watch?v=fulkEU1JAVUYou'll find my weekly article on my blog: https://thebootstrappedfounder.comPodcast: https://thebootstrappedfounder.com/podcastNewsletter: https://thebootstrappedfounder.com/newsletterMy book Zero to Sold: https://zerotosold.com/My book The Embedded Entrepreneur: https://embeddedentrepreneur.com/My course Find your Following: https://findyourfollowing.comFind me on Twitter: https://twitter.com/arvidkahl/This episode is sponsored by Drata.

这次是我们2022年末专题的第二期。2022年对全球和中国企业服务市场，尤其是软件行业投资人，可谓是非常百感交集的一年。2022年3月，Onboard! 第一期的主题是回顾 2021 年的美国 SaaS IPO，那个时候真是市场一片红红火火。但是到了2022年的风云突变，让大家有冰火两重天的感觉。 Hello World, welcome Onboard! 在这个有点特殊的年末，我们邀请来一位投资人朋友，XVC的合伙人Leo，加入我们的对谈。Leo 在中美都有丰富的投资的经历。经历了这几年市场的剧变，放慢脚步后，我们反而有了更多的时间，静下心来，跟海外和本土的优秀SaaS公司有了更平和，更深度的交流。这次的市场回调，让从业者、投资人都回归本质，重新思考软件生意本身，中美的差异，还有未来发展方向。在市场的高高低低中，我们试图在噪音中沉淀思考，寻找变与不变的底层逻辑。 这次的话题，切合实际又略有挑战（好多灵魂拷问啊！），希望能给各位启发，思考，和信心！ 最后，2022年是 Onboard! 的元年。前两天小宇宙的年度回顾，让两位主播对开播10个月以来的小成绩，充满欣喜，更是无限感恩。非常感谢7000多位粉丝的支持，以及每期在节目里的评论和建议的听众朋友。新的一年，OnBoard! 继续陪伴你~ 对谈阵容 Monica: Onboard! 主播，经纬创投投资人，前 AWS ML 硅谷团队打工人。 GN: Onboard! 主播，前 SaaS 投资人，公众号“我思锅我在”主理人。 嘉宾 Leo Lu: XVC 合伙人，前蓝湖资本投资人 我们聊了什么 02:08 嘉宾介绍 04:15 2022年美国SaaS二级市场发生了什么变化？ 07:59 二级市场的动荡对于一级市场有什么影响？ 12:26 SaaS公司还是一个抗周期的行业吗？ 16:38 Salesforce是否遇到了困境？ 19:12 又有哪些细分领域在下跌中受影响较小？ 24:07 但是在美国，SaaS一级市场相对依旧活跃；寒冬中仍然有亮点 33:04 电商SaaS在宏观环境的冲击下还有机会吗？ 35:24 Leo如何看待国内尤其企业服务公司出海的机会？ 38:22 为什么现在大家开始重视全球化的机会？ 43:12 中国软件团队做全球化SaaS主要遇到的挑战。 53:15 以科杰数据为例，投资做国内市场的SaaS公司与投出海SaaS有什么不同？ 59:19 整体来看，美元基金如今投资SaaS发生了什么变化？ 68:49 “PLG”热度退却了吗？在中国做PLG是伪命题吗？ 79:21 什么是中国式SaaS公司？有哪些不错的本土实践？ 84:49 新常态下，如何看待中国SaaS的市场空间和估值逻辑？ 94:05 未来大家会继续关注SaaS里哪些新机会？ 108:52 快问快答：推荐的书，产生变化的观点等等 121:25 彩蛋：主播和嘉宾2023年的小目标和小心愿！ 我们提到的公司 科杰科技 API Fox Weee! WasmEdge Alteryx Gitlab Bill.com Agora Zoom UiPath Wix Shopify Klaviyo Salesforce Snowflake Datadog Hashicorp Confluent Splunk Crowdstrike 合规SaaS：Vanta, Drata, Secureframe, Safebase, Laika Snyk Tiktok Aftership 店小秘 拼多多及Temu Airwallex Xtransfer Pingcap Databricks 蓝湖设计 稿定设计 即时设计 创客贴 小鹅通 ONES 凌迪科技 金山办公 UserTesting UserZoom EMQ AIGC相关公司：Jasper.ai, Lensa, Grammarly 我们推荐的书 《若干重大决策与事件的回顾》：book.douban.com 《中国出口之谜》：book.douban.com 《我曾走在崩溃的边缘》：book.douban.com 《创业的国度：以色列经济奇迹的启示》：book.douban.com 别忘了！同步关注两位 Host 的微信公众号，看更多干货内容哦： M小姐研习录 (ID: MissMStudy) by Monica 我思锅我在 (ID: thinkxcloud) by GN 大家的点赞、评论、转发是对我们最好的鼓励！希望你分享给对这个话题感兴趣的朋友哦~ 如果你有希望我们聊的话题，希望我们邀请的访谈嘉宾，都欢迎在留言中告诉我们哦！

By Adam Turteltaub With enhanced concerns and vigilance over cybersecurity has come an increasing number of yardsticks that organizations much measure themselves against. As Troy Fine, Director, Risk and Compliance at Drata explains, in addition to legal requirements such as the European General Data Protection Regulation (GDPR), HIPAA and the California Consumer Privacy Act (CCPA) two key standards have emerged: SOC2: This standard was developed by the accounting body ISACA and is primarily of import to US-based technology companies and startups. Audits are performed by CPA firms on internal controls related to security ISO27001: More popular in Europe, it is a certification on information security management systems, examining how risks are identified and mediated and what control plans are in place To prepare for an audit he recommends first getting a good understanding of the relevant standard so you understand all the elements it requires and what it will take to meet those requirements. Next determine when you will need the certification in hand and start building a timeline backwards to determine when you need to start. Calculate, too, what it will cost in terms of time, people and everything else, including the price of the audit. How you work with the auditor will depend largely on which audit you pursue. He explains that SOC2 audits allow for more consultation than ISO27001 does. When hiring an auditor, it can be tempting to use the one with the lowest price. He recommends, though, being careful before going down that route since the auditor is likely to have less time to give. Be sure also to ensure that the auditor has the necessary expertise to be able to evaluate your technology. Some may not be as well versed on various elements, including cloud services, as they should. Once the audit begins, compliance teams can be helpful by ensuring that all the data and people the auditor needs are available. And, he advises, be transparent, even about your gaps. Listen in to learn more about having a successful data security standard audit.

Pre-IPO news for the week of Dec 09, 2022.Large pre-IPO company news;- Checkout.com (www.checkout.com) strikes product partnership with British retail giant Sainsbury.- Instacart (www.instacart.com) launched FSA and HSA product search feature.- Databricks (www.databricks.com) gets approval to sell US government agencies.- Getir (www.getir.com) buys Gorillas (www.gorillas.io) in all stock deal.Capital raise highlights for the week;- Drata (www.drata.com), a compliance technology company, raised a $200m Series C at a $2.0b valuation; a 96% increase from its $1.0b valuation Series B in Nov 2021, 14 months ago.- Runway (www.runwayml.com), an AI graphic design and video company, raised a $50m Series C at a $500m valuation; a 150% increase from its $200m valuation Series B in Dec 2021, 13 months ago. Aaron Dillon is the general partner of the AG Dillon Pre-IPO Equity Venture Capital Fund. AG Dillon & Co is a venture capital asset manager and publisher of the AG Dillon Pre-IPO Indexes.

This week we discuss Werner's AWS Keynote, Event-Based Architectures and the potential of ChatGPT. Plus, some thoughts on International Condiments. Watch the YouTube Live Recording of Episode 390 (https://www.youtube.com/watch?v=CRy69wGMROM) Runner-up Titles It's never stopped us before. Ranch dressing divine/Before the Big Bang, it was/Eternal condiment Three kinds of mayonnaise An aspirational architectural pattern. There's not a lot of architectural thought out there. I don't have a computer science degree. Mid-Code It's just a bunch of programming, how hard could it be? Is it a utopian Wall-E or not? Rundown AWS re:Invent 2022 - Keynote with Dr. Werner Vogels (https://www.youtube.com/watch?v=RfvL_423a-I) Amazon announces Eventbridge Pipes, a simpler way to connect events (https://techcrunch.com/2022/12/01/amazon-announces-eventbridge-pipes-a-simpler-way-to-connect-events-from-multiple-services/) Design Patterns (https://www.amazon.com/gp/product/0201633612/) book ChatGPT: Optimizing Language Models for Dialogue (https://openai.com/blog/chatgpt/) ChatGPT will replace StackOverflow? (https://twitter.com/anildash/status/1599655544486187009) Automating bullshit - OpenAI ChatGPT removes office worker toil (https://buttondown.email/cote/archive/automating-bullshit-openai-chatgpt-removes-office/) Coté doesn't need to write those survey analysis blogs anymore (https://beta.openai.com/playground/p/w2tNHzzV7DXsz63ZWQfKGpD4?model=text-davinci-003). Relevant to your Interests Elastic Earnings (https://twitter.com/jaminball/status/1598068640137428992?s=46&t=eFF6wBlhOCFaLPPQf7nSLQ) Snowflake Earnings (https://twitter.com/jaminball/status/1598348082839977984?s=20&t=3ZTOl6JnPJu8vtcP7YUC4Q) IBM and Maersk Abandon Ship on TradeLens Logistics Blockchain (https://www.coindesk.com/business/2022/11/30/ibm-and-maersk-abandon-ship-on-tradelens-logistics-blockchain/) OpenStack cloud sees explosive growth (https://www.zdnet.com/article/openstack-cloud-sees-explosive-growth/) Amazon EC2 Instance Types - Amazon Web Services (https://aws.amazon.com/ec2/instance-types/?trk=3478554f-e06b-44d5-8171-41d0ea80c8c9&sc_channel=ps&s_kwcid=AL!4422!3!544066093425!p!!g!!graviton%20processor&ef_id=Cj0KCQiAvqGcBhCJARIsAFQ5ke48NKL5fH2ETDPdMavKJxSfxS6luQdG2ZGGW51UzVtV8ev8GSxc2ucaAqoCEALw_wcB:G:s&s_kwcid=AL!4422!3!544066093425!p!!g!!graviton%20processor) HYPR, the Leader in Phishing-Resistant MFA, Raises $25M (https://blog.hypr.com/press-releases/hypr-the-leader-in-phishing-resistant-mfa-raises-25m?_ga=2.20718968.1905140386.1669908801-1738015730.1669908801) Future is quietly shutting down (https://twitter.com/robaeprice/status/1598393044503502860) Andreessen Horowitz's buzzy tech publication Future is shutting down (https://www.businessinsider.com/a16z-future-closes-staff-exit-2022-11?international=true&r=US&IR=T) AWS launches Application Composer, a low-code tool for building serverless apps (https://techcrunch.com/2022/12/01/aws-launches-application-composer-a-low-code-tool-for-building-serverless-apps/) No one seemed to see Bret Taylor stepping away from Salesforce (even Marc Benioff) (https://techcrunch.com/2022/12/01/no-one-seemed-to-see-bret-taylor-stepping-away-from-salesforce-even-marc-benioff/) Major password manager LastPass suffered a breach — again (https://www.npr.org/2022/12/01/1140076375/major-password-manager-lastpass-suffered-a-breach-again) Here's everything AWS announced in its re:Invent data keynote (https://techcrunch.com/2022/11/30/heres-everything-aws-announced-today/) Cloudflare hikes prices by a quarter (https://www.theregister.com/2022/12/01/cloudflare_price_rises_annual_exemptions/) Twitter lawsuit (https://twitter.com/AkivaMCohen/status/1598487532764798983) the only cheat sheet you need (https://github.com/chubin/cheat.sh) Google Plans to Lay Off 10,000 'Poor Performing' Employees. Why That's a Big Lie, According to Harvard Professor (https://www.inc.com/nick-hobson/googles-plan-to-lay-off-10000-poor-performing-employees-is-based-on-a-big-lie-according-toharvard-professor.html) Broadcom again tries to quash VMware price rise rumors (https://www.theregister.com/2022/12/01/vmware_broadcom_prices_nutanix_q123/) Rackspace email outage continues as migrations prove hard (https://www.theregister.com/2022/12/05/rackspace_hosted_exchange_security_update/) If Rowy has its way, if you can use Excel, you can build software (https://techcrunch.com/2022/12/05/rowy-pre-seed/) Axiom launches its automated identity and access management platform (https://techcrunch.com/2022/12/06/axiom-launches-its-automated-identity-and-access-management-platform/) The E-Mail Newsletter for the Mogul Set (https://www.newyorker.com/news/annals-of-communications/the-e-mail-newsletter-for-the-mogul-set) The EU hosted a 24-hour party in its $400,000 metaverse to appeal to young people, but pretty much no one showed up (https://www.businessinsider.com/eu-hosts-400000-metaverse-party-barely-anyone-shows-up-2022-12) mIRC ended its lifetime license agreement with all who purchased its software 10 years out (https://www.pocnetwork.net/internet-news/mirc-ended-its-lifetime-license-agreement-with-all-who-purchased-its-software-10-years-out/) Security compliance and automation platform Drata nabs $200M at $2B valuation (https://techcrunch.com/2022/12/07/security-compliance-and-automation-platform-drata-nabs-200m-at-2b-valuation/) 9 insights on real world container use (https://www.datadoghq.com/container-report/) Bret Taylor to step down as Salesforce co-CEO (https://www.axios.com/2022/11/30/bret-taylor-salesforce-ceo-step-down?utm_source=newsletter&utm_medium=email&utm_campaign=newsletter_axioslogin&stream=top) Tableau Software CEO Mark Nelson steps down (https://www.geekwire.com/2022/tableau-software-ceo-mark-nelson-steps-down/) Confirmed: Slack CEO Stewart Butterfield stepping down in January (https://techcrunch.com/2022/12/05/report-slack-ceo-stewart-butterfield-stepping-down-in-january/) Microsoft Teams adds free communities feature to take on Facebook and Discord (https://www.theverge.com/2022/12/7/23497938/microsoft-teams-communities-feature) Nonsense Advent of Code (https://adventofcode.com/2022) The difference between a snafu, a shitshow, and a clusterfuck (https://qz.com/work/1225213/the-difference-between-a-snafu-a-shitshow-and-a-clusterfuck/) Dangerously Advanced Git (https://twitter.com/QuinnyPig/status/1598382103829544961?s=20&t=3ZTOl6JnPJu8vtcP7YUC4Q) Conferences THAT Conference Texas Speakers and Schedule (https://that.us/events/tx/2023/schedule/), Round Rock, TX Jan 15th-18th Use code SDT for 5% off New State of Open Con 2023, (https://stateofopencon.com/sponsors/) London, UK, February 7th-8th 2023 CloudNativeSecurityCon North America (https://events.linuxfoundation.org/cloudnativesecuritycon-north-america/), Seattle, Feb 1 – 2, 2023 DevOpsDays Birmingham, AL 2023 (https://devopsdays.org/events/2023-birmingham-al/welcome/), April 20 - 21, 2023 Listener Feedback Send “End of Year” listener questions to questions@softwaredefinedtalk.com (mailto:questions@softwaredefinedtalk.com). Tim recommends Stratechery (with Ben Thompson) | Acquired Podcast (https://www.acquired.fm/episodes/stratechery-with-ben-thompson) SDT news & hype Join us in Slack (http://www.softwaredefinedtalk.com/slack). Get a SDT Sticker! Send your postal address to stickers@softwaredefinedtalk.com (mailto:stickers@softwaredefinedtalk.com) and we will send you free laptop stickers! Follow us on Twitch (https://www.twitch.tv/sdtpodcast), Twitter (https://twitter.com/softwaredeftalk), Instagram (https://www.instagram.com/softwaredefinedtalk/), LinkedIn (https://www.linkedin.com/company/software-defined-talk/) and YouTube (https://www.youtube.com/channel/UCi3OJPV6h9tp-hbsGBLGsDQ/featured). Use the code SDT to get $20 off Coté's book, Digital WTF (https://leanpub.com/digitalwtf/c/sdt), so $5 total. Become a sponsor of Software Defined Talk (https://www.softwaredefinedtalk.com/ads)! Recommendations Brandon: Large Mouse Pad (https://www.amazon.com/dp/B0788LMLZL?psc=1&ref=ppx_yo2ov_dt_b_product_details) Matt: Ze Frank's True Facts: Tarantulas (https://www.youtube.com/watch?v=EhJYtmZuhV4) Sriracha History (https://www.vice.com/en/article/zmj4ae/the-story-of-sriracha-is-the-story-of-america) Coté: CleanShot X (https://cleanshot.com/) Photo Credits Header (https://unsplash.com/photos/LOHduxdd73s) CoverArt (https://unsplash.com/photos/tGBXiHcPKrM)

Episode 90 is with Amanda Robson, Partner at Cowboy Ventures! Originally from Ancaster, Ontario, Amanda, better known as Robby, invests in B2B seed & pre-seed founders and focuses on innovations in developer tooling, data management, security, applied AI, and supply chain. In November 2020, she led a US$3.2-million investment round in a securities-software company called Drata, now worth US$1 billion. When she's not crushing it as a newly minted and youngest partner at Cowboy Ventures, she's running her organization, Modern Angels, which seeks to democratize funding for women and non-binary people. She also co-hosts her own podcast, The Open Source Startup Podcast. Cowboy Ventures is a seed-stage focused fund investing in digital startups that seeks to back exceptional founders who are building products that re-imagine work and personal life in large and growing markets. We sit down to speak with Robby about her career journey from Ontario to Silicon Valley. She details the tech landscape across North America, the importance of DEI, why she's big on Open Source, the art of cold outreach, and much more. Cowboy Ventures https://www.cowboy.vc/index Timestamps 2:45 - Intro 5:24 - Importance of Cold Outreach 9:57 - Tech Industry - Canada vs. USA 12:32 - Amanda “Robby” Robson 15:59 - Joining Cowboy Ventures 18:25 - Cowboy Ventures Investment Thesis 25:17 - What Makes a Successful Founder 28:00 - Common Hiring Mistakes Founders Make 29:40 - Importance of Diverse Teams 32:50 - What is Open Source? Why is it important? 41:50 - The Open Source Podcast 47:20 - Modern Angels 51:24 - Time Management 55:40 - Lightning Round --- This episode is sponsored by · Anchor: The easiest way to make a podcast. https://anchor.fm/app

Elliot Volkman, Director of Brand, Content, and Community at Drata, joins us in this episode to talk about demand generation strategies, also known more casually as demand gen. Demand gen consists of targeted marketing programs to drive brand awareness and build interest for qualified leads in products, services, and more. Tune in to our discussion with Elliot to learn how demand gen intersects with sales enablement, brand, content, and even community.  Timecoded Guide: [03:52] Demand gen vs. brand message [07:40] The goal of demand gen in an organization [14:48] How demand gen ties into content and community members [22:45] Key metrics and KPIs to track brand awareness [31:04] Experimentation and demand gen   How does demand gen differ from and bring focus to brand awareness? Elliot believes that a lot of C-level executives mistake brand awareness for traditional marketing or product marketing. Brand awareness is more about what customers see when they encounter your company via search engine. Product marketing is instead about targeting specific personas. Demand generation fits into brand awareness because it's designed to drive customer's awareness of your company and build interest in your products, rather than directly marketing those products to them through product marketing strategies. “The most important and critical aspect that organizations fail to pay attention to is building your brand, especially building voice and messaging around it that resonates.” What is the goal of demand generation if not to drive sales? A lot of organizations have an executioner and a product marketing lead, with various jobs for each role. Demand gen's job is to take the webinars the executioner makes and the messaging the product marketer makes, and then guide those towards business alignment and increased brand awareness. Elliot emphasizes that demand generation drives sales, but does not drive lead generation. Demand gen is not supposed to chase leads the way a product marketing manager might, it's instead supposed to build awareness. “I think there's two aspects of demand gen, depending on the organizational size and what they do, but at the end of the day, the demand generation strategy does have to drive pipeline.” How does demand gen tie into content and community? Oftentimes, in Elliot's opinion, marketing can rely too much on technology. While technology is critical, you don't have to educate anyone on why it's important. Demand gen focuses more on humanizing the brand and building something fully centered around the customer. You rely on internal experts to build a community that ties everything together from marketing to security to visuals, and beyond. And in the end, the customer should be the hero and should feel like one in your demand generation strategy. “It's about focusing on people, focusing on processes, and embracing technology, of course. At the end of the day, having our customers be a voice is absolutely critical to the success of our future.” What are the KPIs to track brand awareness? There may be numerous ways to track brand awareness, but Elliot explains that the main KPI is organic traffic to the website. The byproducts of increased organic website traffic include organic increases in demo requests, nurturing people through the buying process, and acting as fuel for the engine of marketing campaigns. There's no direct selling in a demand generation strategy. You can avoid those most-hated marketing tactics, like when you cold call or appear in their already crowded email inboxes. Demand gen is all organic and based on nurturing the customer. “We're not trying to brainwash people by any means, we're actually able to help educate them along the way. We build a relationship through that education and through those materials, and then, maybe they'll check out what our product does, or they've decided to download something, and we can continue to nurture them.”  ----------  Links:  Get tickets for our upcoming Cyber Marketing Con 2022.  Spend some time with our guest Elliot Volkman on LinkedIn, Twitter, and his podcast, Adopting Zero Trust. Follow Gianna on LinkedIn. Catch up with Maria on LinkedIn. Join the Cybersecurity Marketing Society on our website, and keep up with us on Twitter. Keep up with Hacker Valley on our website, LinkedIn, Instagram, and Twitter.

In this special edition of the "Smashing Security" podcast, computer security veterans Graham Cluley and Carole Theriault welcome back author and journalist Jamie Bartlett - host of "The Missing CryptoQueen" podcast. Jamie tells us about his new book, which shares more details about the disappearance of cryptocurrency scammer Dr Ruja Ignatova, and the subsequent hunt by law enforcement. Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks. Episode links: https://www.bbc.co.uk/programmes/p07nkd84 (The Missing CryptoQueen podcast) — BBC. https://www.penguin.co.uk/books/442256/the-missing-cryptoqueen-by-bartlett-jamie/9780753559581 (The Missing CryptoQueen book) — Penguin. https://www.bbc.co.uk/news/world-us-canada-62005066 (Missing Cryptoqueen: FBI adds Ruja Ignatova to top ten most wanted) — BBC News. https://www.smashingsecurity.com/store (Smashing Security merchandise (t-shirts, mugs, stickers and stuff)) Sponsored by: https://bitwarden.com/smashing/ (Bitwarden) – Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing. https://www.smashingsecurity.com/drata (Drata) – Put Security and Compliance on Autopilot. Build trust with your customers and scale securely with Drata, the smartest way to achieve continuous SOC 2, ISO 27001 & HIPAA compliance. https://www.cybersecurityinside.com/smashing (Cyber Security Inside podcast) -bringing you the most important and timely security topics as well as other industry experts for insightful conversations. Support the show: You can help the podcast by telling your friends and colleagues about “Smashing Security”, and leaving us a review on https://apple.co/2J1YMCu (Apple Podcasts) or https://www.podchaser.com/podcasts/smashing-security-244729 (Podchaser). Become a https://www.patreon.com/smashingsecurity (Patreon supporter) for ad-free episodes and our early-release feed! Follow us: Follow the show on Twitter at https://twitter.com/smashinsecurity (@SmashinSecurity), or on the https://www.reddit.com/r/smashingsecurity (Smashing Security subreddit), or https://www.smashingsecurity.com/ (visit our website) for more episodes.

Internet-connected jacuzzis find themselves in hot water, and a Google engineer claims that their AI has developed feelings. All this and more is discussed in the latest edition of the "Smashing Security" podcast by computer security veterans https://www.smashingsecurity.com/hosts/graham-cluley (Graham Cluley) and https://www.smashingsecurity.com/hosts/carole-theriault (Carole Theriault). Warning: This podcast may contain nuts, adult themes, and rude language. Theme tune: "Vinyl Memories" by Mikael Manvelyan. Assorted sound effects: AudioBlocks. Episode links: https://www.youtube.com/watch?v=EM0VwEkxWTg (Hot Tub Time Machine trailer) — YouTube. https://eaton-works.com/2022/06/20/hacking-into-the-worldwide-jacuzzi-smarttub-network/ (Hacking into the worldwide Jacuzzi SmartTub network) — Eaton Works. https://apps.apple.com/us/app/smarttub/id1318260634 (SmartTub) — Apple iOS App Store. https://play.google.com/store/apps/details?id=com.jacuzzi.smarttub&hl=en_GB&gl=US (SmartTub) — Google Play store. https://www.bbc.co.uk/news/technology-46674706 (Hot tub hack reveals washed-up security protection ) — BBC News. https://www.washingtonpost.com/technology/2022/06/11/google-ai-lamda-blake-lemoine/ (Google engineer Blake Lemoine thinks its LaMDA AI has come to life ) — The Washington Post. https://www.theguardian.com/technology/2022/jun/12/google-engineer-ai-bot-sentient-blake-lemoine (Google engineer put on leave after saying AI chatbot has become sentient ) — The Guardian. https://www.theregister.com/2022/06/20/ais_most_convincing_conversations_are/?td=rt-3a (AI's most convincing conversations are not what they seem) — The Register. https://cajundiscordian.medium.com/ (Blake Lemoine's blog.) https://vangoghexpo.com/bristol/ (Van Gogh Bristol Exhibition: The Immersive Experience.) https://www.youtube.com/watch?v=ib34WI0H4qI (Van Gogh: The Immersive Experience ) — YouTube. https://www.bbc.co.uk/programmes/p029399x (The Inquiry) — BBC World Service. https://www.smashingsecurity.com/store (Smashing Security merchandise (t-shirts, mugs, stickers and stuff)) Sponsored by: https://l.kolide.co/3uSdmVj (Kolide) - the SaaS app that sends employees important, timely, and relevant security recommendations concerning their Mac, Windows, and Linux devices, right inside Slack. https://bitwarden.com/smashing/ (Bitwarden) - Password security you can trust. Bitwarden is an open source password manager trusted by millions of individuals, teams, and organizations worldwide for secure password storage and sharing. https://www.smashingsecurity.com/drata (Drata) - Put Security and Compliance on Autopilot. Build trust with your customers and scale securely with Drata, the smartest way to achieve continuous SOC 2, ISO 27001 & HIPAA compliance. Support the show: You can help the podcast by telling your friends and colleagues about "Smashing Security", and leaving us a review on https://apple.co/2J1YMCu (Apple Podcasts) or https://www.podchaser.com/podcasts/smashing-security-244729 (Podchaser). Become a https://www.patreon.com/smashingsecurity (Patreon supporter) for ad-free episodes and our early-release feed! Follow us: Follow the show on Twitter at https://twitter.com/smashinsecurity (@SmashinSecurity), or on the https://www.reddit.com/r/smashingsecurity (Smashing Security subreddit), or https://www.smashingsecurity.com/ (visit our website) for more episodes.

Adam Markowitz, CEO and Founder of Drata (https://drata.com), discusses how Drata can streamline data audits and help companies protect their data, continuously monitor their data security, and produce reports for SOC 2 and other compliance programs. Kruze Consulting is a leader in Startup Tax (https://kruzeconsulting.com/startup-taxes) Filings, Payroll Tax Savings from R&D Tax Credits, professional advice and more! Find out why hundreds of seed and venture funded startups trust Kruze Consulting's tax experts, software and process to save them time and hassle.

There are so many books, videos and workshops on starting your own company. The problem for anyone listening to this podcast is that none of them come from the perspective of a developer.That's why we were so excited that the founder & CTO of Drata, Daniel Marashlian – who has previously founded eight companies before hitting a billion-dollar valuation with Drata – was open to talking about what it's like to build a company from a coder's perspective.From the signs you're an entrepreneur at heart, to filling out your skills gap to leaning in to the edge you have with your background, this episode of Dev Interrupted is essential listening for anyone who can code - or anyone who has dreamed of founding their own company. Dev Interrupted survey: https://www.surveymonkey.com/r/PRYRNC5Drata's website: https://drata.com/Daniel's Screw Up story: https://bit.ly/3LbLHCXJoin our Discord Community ►► discord.gg/devinterruptedOur Website ►► devinterrupted.com/Want to try LinearB?  Book a LinearB Demo and use the "Dev Interrupted Podcast" discount code.Have 60 seconds? Review the show on Apple Podcasts

Join us in the BreakLine Arena for a conversation with Adam Markowitz, co-founder and CEO of next-gen security compliance automation company Drata.To him, trust is one of the most powerful tools that an entrepreneur can have in their toolkit. Drata is on a mission to help businesses earn and keep the trust of their users, customers, partners, and prospects. Adam unpacks this belief for us and shares insights into Drata's company culture, which he views as a core competitive advantage. We dive into the values that inform his commitment to people, culture, and feedback, and examine his relationship with failure and competition. Adam shares some valuable advice for entrepreneurs as they navigate sales, hiring, and fundraising. We also touch on resilience as a key attribute for startups, speed as the ultimate currency, and what fatherhood has taught Adam about being a better leader.Please like, rate, subscribe, or review our show if you like what you've heard! We'd love to hear your thoughts. If you're interested in joining our community, please visit www.breakline.org.

As more and more data gets stored in the cloud, proving that you can protect your customers' data is not just a nice-to-have – it's essential. In this episode we sit down to talk with aerospace engineer turned entrepreneur - Adam Markowitz, CEO of Drata. We talk about the SOC 2 framework, how to create a culture of security from scratch and how automation is key to turning a headache into a smooth operation.See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

In the Enterprise Security News for this week: Drata reaches unicorn status in record time with a $100m Series B, SCYTHE announces a $10m Series A, McAfee Consumer business acquired for $14b, WPScan acquired by Automattic (the company behind WordPress), QOMPLX SPAC is called off, HashiCorp IPO is not called off, open source CSPM and firmware emulation tools, Ghost kitchens and more.   Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw250

In the Enterprise Security News for this week: Drata reaches unicorn status in record time with a $100m Series B, SCYTHE announces a $10m Series A, McAfee Consumer business acquired for $14b, WPScan acquired by Automattic (the company behind WordPress), QOMPLX SPAC is called off, HashiCorp IPO is not called off, open source CSPM and firmware emulation tools, Ghost kitchens and more.   Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw250

Adam Markowitz is the Co-founder and CEO of Drata, the San Diego-based startup that provides companies with fast and efficient automated security compliance, a once painstakingly long and arduous process. A former rocket scientist, Adam founded his first startup, Portfolium, in 2013 and created a network of over 5M students, connecting them to mentors and future employers. Six years later he sold the company for $43M when he was just 32 years old. The first line of Drata's code was written in July 2020 and the company has skyrocketed. GGV led Drata's $25M Series A round earlier this year. Drata just announced a $100M Series B financing making the company a “unicorn” in an incredibly fast period. This episode is co-hosted by GGV Investor, Oren Yunger.

Troy Fine is Tom Fox's guest on this week's episode of the Innovation in Compliance Podcast. He is the Senior Manager of Cybersecurity Risk Management and Compliance at Drata. Troy joins Tom to talk about data security, data protection, and risk management. Internal and External Auditing Auditing is external and internal. External auditing entails third parties coming in to assess a company's controls, security frameworks, and determining if they meet compliance requirements. Internal auditing involves people who work directly for the company they are assessing. They are a lot more involved with the business, and understand the requirements of the business better, so they take a more collaborative approach. Internal audit identifies the gaps within the organization, so the business can remedy them quickly, and so that the business can be prepared for an external audit. Troy points out that sometimes internal audit would assist external audit, with external audit relying on the testing that internal already performed.  How Drata Scales Your Company Integrity and trust are the core ethos of Drata. "We built this product so that our customers can prove to their customers that they could have trust in their data security," Troy tells Tom. Currently, the company has over fifty integrations that they can pull data and test from, as well as many new frameworks. What this means is that as Drata's customers get their own customers and more requests for compliance, Drata will be able to support them through additional controls. Customers and clients are able to create a more secure environment in their organizations and meet their compliance standards at the same time. Drata allows customers to manage their control environment via continuous monitoring. When an auditor comes in to assess, they can see the control operated over a long period of time. Assessing Third-Party Risk Within the Drata platform, there is a vendor management page where customers can start monitoring their vendors. Customers can rank them from low to medium to high risk. For medium- and high-risk vendors, customers can log and track how well those vendors are meeting security requirements. "Part of our control testing is to check if the customer is monitoring their vendors appropriately," Troy remarks. "We want to make sure they're also monitoring their vendors, so we provide them a template that allows them to make sure that we're viewing the SOC 2 reports appropriately, and identifying any risk or end-user controls that they need to perform." Zero Trust Tom asks Troy what companies need to be thinking about in terms of cybersecurity in the coming years. "A big area to focus on is going to be this idea of Zero Trust," Troy says. A greater emphasis on verification, based on location, customer behavior, or just a change in general, is going to be seen in the not too distant future. "As the workforce becomes more remote, the idea that somebody behind the keyboard is not the same person that was in your office is becoming a bigger question," he adds. Implementing Zero Trust frameworks is going to become more important. Resources Troy Fine | LinkedIn  Drata

Digital marketing is increasingly important to the success of every business, but it’s a dynamic industry, seeing major disruptions this year with the change to tracking brought by iOS 14. Our guest, Dan Pantelo, founder and CEO of Marpipe, is helping marketers figure out what’s actually working through scalable A-B testing and performance marketing with his platform Marpipe.We talk to Dan about the need for better testing, the current state of MarTech, and his recent $8M series A raise led by Stage 2 Capital along with ourselves at Ripple, Samsung Ventures, Laconia Capital Group, and others.About Dan Pantelo:Dan started out as a street salesman in some of NYC's lowest-income neighborhoods selling electronics on street corners. He went on to found Pantelo Group, an agency that quickly grew to $2M in monthly campaign spend. He founded Marpipe in 2019. Dan did his undergrad at Binghampton University.A word from our sponsor:For anyone that is lucky enough to be a part of building startups, we’ve all seen that mad-rush to answer extensive security questionnaires and implement SOC 2 controls the moment that big whale of a client is on the hook in order to not lose the deal. Which unfortunately ends up swallowing the entire organization's time and resources in the hopes to land that whale, right? Lucky for us at Ripple, we have partnered with compliance automation provider Drata. Drata saves our portfolio companies from these same issues when it comes to effectively proving a strong, ongoing security posture and achieving frameworks like SOC 2 and ISO 27001.Drata allows startups to put Security and Compliance on Autopilot. Companies using Drata experience an average time savings of 85% when compared to running the SOC 2 process manually. Build trust with customers by proving your commitment to security, and maintain continuous compliance in between your audits. Don’t take it from us, Drata works with all kinds of startups like ClearCo, Lemonade, FullStory, Slice and countless others. They're backed by top venture funds such as Okta Ventures and GGV, and are currently G2's number one ranked cloud compliance software provider for customer satisfaction. Listeners of Tank Talks can get set up with a demo of Drata and take advantage of a 15% discount offer and waived implementation fees by visiting drata.com/tanktalks to get setup today.In this episode we discuss:03:20 How personalization in advertising, data, and customization have evolved over the years since advertisers were forced online05:48 Every company is now a marketing company with a subject matter expertise09:28 Other challenges digital marketers face and how they are overcoming them11:30 How brands are using technology to harness User Generated Content (UGC)15:09 Why companies should be focused more on performance marketing20:16 The traditional ad creation process vs. the process with Marpipe24:27 Why creative is now more important with better tracking and recent changes to Facebook27:11 Typical ROI Marpipe customers are seeing31:14 the Marpipe target customer35:12 How Marpipe can use data to decipher trends and what works for specific clients36:46 The future of performance-based marketing39:22 Plans for the $8M Series A raiseFast FavoritesPodcastHow to Take Over The WorldNewsletter/BlogBanklessTech GadgetAirpod ProNew TrendDAOsBookBlack Swan by by Nassim Nicholas Taleb Life LessonOnly worry about things in your direct controlFollow Matt Cohen and Tank Talks here!Podcast production support provided by Agentbee.Agency This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit tanktalks.substack.com

The market for cars in 2021 has been one of the most pandemic-affected markets. The supply of both new and used cars has never been tighter and our guest today is seeing it from all sides. Dan Park is the CEO of Clutch, Canada's first and largest online car retailer. We talk to Dan about the automotive industry, his path to becoming CEO, and about his plans for the $60M he recently raised from Canaan Partners, FJ Labs, and Real Ventures.About Dan Park:Dan is CEO of Clutch, an online platform for car buying and ownership. Prior to Clutch, Dan was GM & Head of Uber Eats Canada. During his time at Uber, Dan led the growth of Uber's food delivery platform in Canada. Previously, Dan was a Venture Partner at Azure Capital Partners and led the firm’s Canadian investment efforts.A word from our sponsor:For anyone that is lucky enough to be a part of building startups, we’ve all seen that mad-rush to answer extensive security questionnaires and implement SOC 2 controls the moment that big whale of a client is on the hook in order to not lose the deal. Which unfortunately ends up swallowing the entire organization's time and resources in the hopes to land that whale, right? Lucky for us at Ripple, we have partnered with compliance automation provider Drata. Drata saves our portfolio companies from these same issues when it comes to effectively proving a strong, ongoing security posture and achieving frameworks like SOC 2 and ISO 27001.Drata allows startups to put Security and Compliance on Autopilot. Companies using Drata experience an average time savings of 85% when compared to running the SOC 2 process manually. Build trust with customers by proving your commitment to security, and maintain continuous compliance in between your audits. Don’t take it from us, Drata works with all kinds of startups like ClearCo, Lemonade, FullStory, Slice and countless others. They're backed by top venture funds such as Okta Ventures and GGV, and are currently G2's number one ranked cloud compliance software provider for customer satisfaction. Listeners of Tank Talks can get set up with a demo of Drata and take advantage of a 15% discount offer and waived implementation fees by visiting drata.com/tanktalks to get setup today.In this episode we discuss:02:44 How the auto industry is evolving and why now is a great time for disruption04:56 The effect of the pandemic on modernizing the automotive industry and how its effected supply and demand for cars07:39 How consumer behavior during the pandemic pushed forward app adoption09:18 What the enduring lessons from the pandemic will be for the automotive industry10:30 Why the dealership model is ready for disruption11:42 How established players in the industry are fighting back against being disrupted from outsiders13:18 Breaking down the existing legal structures between dealerships and automotive brands16:16 How Clutch is using their data to analyze the aftermarket and used car market18:59 Why Clutch is a better way to buy a used car20:43 Real-world lessons Dan and his team have had to make while building Clutch22:06 How Clutch has captured market share23:18 How Dan defines Clutch’s company culture24:26 Why Dan left Uber Eats to become the CEO of Clutch26:46 Plans for Clutch’s recent $60M raiseFast Favorites:Favourite PodcastHow I Built ThisMasters Of ScaleRevisionist HistoryThis American LifeBlog/NewsletterThe PeakTech GadgetGoPro MaxTrendCanada’s startup sceneBookShoe Dog by Phil KnightFollow Matt Cohen and Tank Talks here!Podcast production support provided by Agentbee.Agency This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit tanktalks.substack.com

Our guest today, Gale Wilkinson, founder and managing director of Vitalize Venture Capital, is working to change how we work, how we learn, and how people can access investing in startups.Vitalize is known for investing in the future of work and the future of learning startups. They typically invest $250K-$1.5M at the pre-seed and seed stages. Portfolio companies include Placer, The Mom Project, Toucan, Zero Grocery, Zingtree, hiitide, and many more. They have also recently launched a platform that allows non-qualified investors to invest in start-ups before they hit the public markets.About Gale Wilkinson:Gale started in analyst roles at Nielsen and Orbitz before moving into investing in 2012 by founding Irish Angels, a network of angel investors affiliated with the University of Norte Dame. In 2017 she launched a formal fund, Vitalize Venture Capital. She did her undergrad at Notre Dame and got her MBA at the University of Chicago. She is currently a member of the Kauffman Fellows class of 2023.A word from our sponsor:For anyone that is lucky enough to be a part of building startups, we’ve all seen that mad-rush to answer extensive security questionnaires and implement SOC 2 controls the moment that big whale of a client is on the hook in order to not lose the deal. Which unfortunately ends up swallowing the entire organization's time and resources in the hopes to land that whale, right? Lucky for us at Ripple, we have partnered with compliance automation provider Drata. Drata saves our portfolio companies from these same issues when it comes to effectively proving a strong, ongoing security posture and achieving frameworks like SOC 2 and ISO 27001.Drata allows startups to put Security and Compliance on Autopilot. Companies using Drata experience an average time savings of 85% when compared to running the SOC 2 process manually. Build trust with customers by proving your commitment to security, and maintain continuous compliance in between your audits. Don’t take it from us, Drata works with all kinds of startups like ClearCo, Lemonade, FullStory, Slice and countless others. They're backed by top venture funds such as Okta Ventures and GGV, and are currently G2's number one ranked cloud compliance software provider for customer satisfaction. Listeners of Tank Talks can get set up with a demo of Drata and take advantage of a 15% discount offer and waived implementation fees by visiting drata.com/tanktalks to get setup today.In this episode we discuss:03:26 Why the future of work is such an important area of Gale’s investing07:37 Is future of work just a code name for automation09:23 How remote work and gig economy interact with each other10:42 What Vitalize is excited about with Future of Work13:23 How the metaverse and online will mix with real-world opportunities14:03 Overlooked opportunities in the future of workspace15:24 The ethical questions around working for multiple employers16:39 Areas Gale is wary of in the future of work19:10 Areas in the creator economy Vitalize is looking to bet on20:54 Future of learning and where college degrees will be in the coming years22:40 How the pandemic has affected the future of work and the future of learning23:32 Opening up Venture to populations that have been historically excluded from investing24:48 Gale’s goal for Vitalize and how founders and investors can connect25:26 Gale’s secret to being so great on TwitterFast favourites:PodcastVenture UnlockedNewsletter/BlogAxiosTech GadgetHer PhoneNew TrendEco-friendly packagingBookThe Startup Community Way: Evolving an Entrepreneurial Ecosystem by Brad FeldFollow Matt Cohen and Tank Talks here!Podcast production support provided by Agentbee.Agency This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit tanktalks.substack.com

As we’ve seen from the last two years, BioTech holds immense promise for the future but brings along challenges as an investor into the space. Today we have a lively discussion with two sides of the BioTech investing world, Peter van der Velden, General Partner and Managing director of Lumira Ventures, and Anthony Mouchantaf, Director, Venture Capital at RBCx.About Anthony Mouchantaf:As Director of Venture Capital with RBCx, Anthony works closely with partners across RBC on the bank’s venture investment strategy and leads the venture fund finance group. Prior to joining RBC Anthony was a VC-backed startup founder and a venture capital investor with OMERS Ventures, based out of the fund’s London and Toronto offices.About Peter van der Velden:With 28 years of investment and operating experience, Peter has participated in building companies from start-up through to expansion in the life sciences, information technology, and consumer sectors. Peter’s experience includes: Founder of a boutique merchant bank focused on private IT-based companies, Head of Investment Banking for a boutique investment bank focused on the public IT-based companies, Partner in a buyout partnership targeting retail and consumer-centric businesses; Vice President Business Development for a venture capital-backed drug delivery company; and an Associate role at Canada’s then-largest venture capital firm. Peter started his working career with Canada’s largest independent vaccine manufacturer.A word from our sponsor:For anyone that is lucky enough to be a part of building startups, we’ve all seen that mad-rush to answer extensive security questionnaires and implement SOC 2 controls the moment that big whale of a client is on the hook in order to not lose the deal. Which unfortunately ends up swallowing the entire organization's time and resources in the hopes to land that whale, right? Lucky for us at Ripple, we have partnered with compliance automation provider Drata. Drata saves our portfolio companies from these same issues when it comes to effectively proving a strong, ongoing security posture and achieving frameworks like SOC 2 and ISO 27001.Drata allows startups to put Security and Compliance on Autopilot. Companies using Drata experience an average time savings of 85% when compared to running the SOC 2 process manually. Build trust with customers by proving your commitment to security, and maintain continuous compliance in between your audits. Don’t take it from us, Drata works with all kinds of startups like ClearCo, Lemonade, FullStory, Slice and countless others. They're backed by top venture funds such as Okta Ventures and GGV, and are currently G2's number one ranked cloud compliance software provider for customer satisfaction. Listeners of Tank Talks can get set up with a demo of Drata and take advantage of a 15% discount offer and waived implementation fees by visiting drata.com/tanktalks to get setup today.In this episode we discuss:03:32 Peter’s journey to becoming a BioTech investor06:04 What the Canadian BioTech scene was like 10 years ago07:36 How Anthony convinced the team at RBCx to take BioTech seriously08:52 The pandemic’s role in convincing LPs to take BioTech seriously11:33 Peter’s take on why institutional investors have started to take BioTech investing more seriously15:09 How life sciences has more liquidity than traditional tech sectors17:07 How the life sciences market has matured over the last 10 years18:21 Insight into how investment committees at institutional investors work and how they look at biotech and life sciences23:26 Why life sciences can be intimidating to traditional investors30:57 What needs to happen to get Canadian investors more comfortable with investing in BioTech35:15 Why making unicorns isn’t everything in investing38:09 What value RBCx brings to the table besides capital41:40 How to manage LP communications in the BioTech space48:13 How Canada can become a global life sciences powerhouseFast FavoritesPodcastAnthonyThis is Actually HappeningPeterMasters of ScaleAmerican InnovationsNewsletter/BlogAnthonyVisual CapitalistPeterStat NewsTech GadgetAnthonyOura RingPeterApple WatchTrendAnthonyTikTokPeterWork-Life Balance from remote workBookAnthonyThe Federalist PapersPeterAtlas Shrugged by Ayn RandFollow Matt Cohen and Tank Talks here!Podcast production support provided by Agentbee.Agency This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit tanktalks.substack.com

Data security is a huge concern, and a way to prove you take data security seriously is by obtaining a SOC 2 certificate. When obtained, SOC 2 is the gateway to larger enterprise contracts for SaaS companies, but the process of obtaining it can be labor-intensive, costly, and confusing. Drata was born to help streamline this process. We talk with Adam Markowitz, co-founder and CEO of Drata, to talk through SOC 2 and what Drata does for its customers.About Adam Markowitz:Adam is a former aerospace engineer who worked on rocket engines for NASA’s next-generation space launch vehicle as well as the Space Shuttle Main Engine. He went on to be the founder and CEO of Portfolium (Acquired by Instructure – 2019), proudly serving millions of students and grads from over 3,600 colleges and universities. He co-founded Drata in 2020 and recently closed a $25M Series A with GGV Capital, SVCI - Silicon Valley CISO Investments, Okta Ventures, Cowboy Ventures, and Leaders Fund.In this episode we discuss:01:58 What does SOC 2 Compliance and why is it so hard to achieve?05:03 The SOC 2 process with and without Drata06:48 Why SOC 2 is a growing concern for startups08:22 Is SOC 2 standard for B2B companies?09:53 What’s the first thing you should know if you’re asked for a SOC2 report?12:12 The difference between SOC 2 Type I and SOC2 Type II13:07 What the best case turnaround time for a SOC 2 Type I report13:48 Why many companies do a SOC 2 Type I on the way to get a SOC 2 Type II14:43 What type on content is in a SOC 2 report16:43 How founders should think about SOC 2 requests from clients18:25 How can startups instill a culture of cybersecurity20:59 Who should manage the SOC 2 process at smaller startups23:07 What Drata does to help simplify and automate the SOC 2 process26:13 What is the overlap between SOC 2 and HIPPA27:23 When is the right time to add a CISO position to a startup?28:50 Drata’s traction and recent Series A financingFast FavoritesPodcastMasters of ScaleNewsletter/BlogTed TalksGadgetAirpodsTrendHybrid/Remote workBookExtreme Ownership: How the US Navy SEALs Lead and Win by Jocko WilinkRelentless: From Good to Great to Unstoppable by Tim Grover and Shari WenkFollow Matt Cohen and Tank Talks here!Podcast production support provided by Agentbee.Agency This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit tanktalks.substack.com

Ross Hosman is the CISO at Drata, a Series A staged security and compliance automation company. Drata announced their Series A last month, with investment from GGV Capital, SVCI, Okta Ventures, and other prominent investors. They're focused on automating compliance requirements like ISO27001 & SOC2 so organizations can spend more time growing their businesses and less time doing manual compliance work. Ross has some incredible experiences at large organizations like JP Morgan Chase where he built and managed the cloud security team and more recently as the Head of Security at Sigma Computing. This wide range of experience has helped form Ross's view that security needs to be 'close to the engineers' but also focused on measuring & communicating the value of security to the business. More specifically, he shared why he loves interfacing with customers & prospects, and how that experience makes him a better CISO.

Channext, a software-as-a-service platform connecting vendors and business partners, has raised USD 0.8 million in a seed round. Channext will use the funds received in this round to extend its European footprint in countries such as Italy, the Nordics, and Spain. Despite the difficulties of starting a business during a pandemic, he continued, their company has expanded significantly in the last year.Pathfndr.io, a no-code SaaS startup, has raised an undisclosed amount in pre-Series A round led by Arali Ventures. Other participants include SEA Fund, Wayfare Ventures, KPB Family Trust, Acsys Investments, and Capital A, JAZFund LLC, Shravan Gupta, and founders of unicorns Freshworks and Chargebee. Pathfinder.io is the operating name of Bengaluru-based MeTripping Technologies Pvt Ltd. The firm said in a statement that the additional money would be used to continue investing in product innovation at scale and expand its worldwide sales force.Tomi.ai, an AI-powered platform optimizing digital ads, has announced its seed fundraise of $1 million from Begin Capital and Phystech Leadership Fund. Konstantin Bayandin, founder and CEO of Tomi.ai, on his LinkedIn handle, announced the funding and thanked the investors. According to reports, Mr. Bayndin would use the proceeds from the fund to expand the company's platformHyderabad-based BigLeap has raised ₹5 crores ($0.67 million) in a debt fund from Anup Kumar Yama, a roller skater athlete from India and the CEO of Yama Skating Academy. Reports state that the funding was raised for the startup's initiative, BigLeap.AI, a stealth-mode HR product aimed at simplifying the job search experience. According to the Times of India, The BigLeap.AI app is expected to be rolled out in September this year and would help job seekers to tap into active vacant jobs in different sectors.New York-based Batch has raised $5 million in a seed round funding co-led by Coatue Seven Seven Six as per reports. The round witnessed participation from the Weekend Fund, Shrug Capital, and the Chainsmokers, among others. The startup provides QR codes to help retailers selling to customers, make re-ordering of their products fast and simple. Currently, the startup uses Apple's App Clip technology assisting the users in loading a small part of the app on demand but plans to make it work on both iOS and Android eventually.Acryl Data has come out of stealth mode, raising $9 million in a seed round led by 8VC, with LinkedIn and Insight Partners' participation to help companies use their tools for their big data requirements. Golden Ventures, an early-stage venture capital firm, has raised its fourth fund of $100M. The funds will be utilized to invest in new companies and follow-on investments in businesses outside of Golden Ventures' portfolio. At this time, the fund's primary goal is to profit from the growing trend of increased opportunity in the Canadian environment.Mitiga, a cloud security startup, has raised $25 million in a Series A funding round led by DNX, ClearSky Security, and Atlantic Bridge.  According to the Israeli firm, the money will be used to “continue to disrupt how incident preparation and response is delivered,” as well as to “significantly” increase its cybersecurity, engineering, sales, and marketing employees.Pequity, a compensation software builder for equitable pay, has raised $19 million in a Series A funding round led by Norwest Venture Partners. Other participants include Scribble Ventures, First Round Capital, and Designer Fund. The funds will be used to invest in products as well as hiring. The firm now has 20 employees on its payroll and plans to double that number by the end of the year, after favorable market feedback.Frumtak Ventures has launched its third fund, Frumtak III, to invest in post-seed and Series A startups. The $57M fund would have a ticket size ranging from one to five million dollars for the companies it would invest in. The VC firm targets early-stage companies having a high growth potential.Embark Trucks Inc. and Northern Genesis Acquisition Corp II have jointly announced that both the companies will be entering a definitive business combination agreement that will make Embark Trucks go public. This deal will give Embark Trucks a market value of $5.2 billion. Embark Trucks is an autonomous software technology developer for the trucking industry. Aircall, a cloud-based call center software firm with a $1.1 billion value, has raised $120 million in a Series D round, making it a unicorn. The business plans to hold an enormous technology stack and collaborate with large telecom companies to use their networks.Vercel, a platform for creating, evaluating, and deploying Jamstack sites, has received $102 million in a Series C round with a valuation of $1.1 billion, making it a unicorn. Vercel is the open-source Next.js React framework's creator. Traffic to all of the company's websites and applications has tripled since October 2020, indicating significant growth. Carhartt, Github, IBM, McDonald's, and Uber are among Vercel's clients.PlanetScale, the pioneer of Vitess, a database clustering system for MySQL, has announced its Series B fundraise of $30 million, led by Insight Partners. Andreessen Horowitz and SignalFire participated in the round.Forto, a provider of digital logistics technology, digitized freight forwarding supply chain solutions, has turned a unicorn, raising $240 million in a Series C round led by SoftBank Vision Fund 2. The company's valuation now stands at $1.2 billion.In a move to unify developer experiences, providing intelligent applications, Amazon Web Services, and Salesforce have announced the expansion of their strategic partnership. The move would facilitate customers to use Salesforce and AWS capabilities in tandem to deploy robust and new business applications accelerating digital transformation quickly. Drata, a compliance and security automation company, has announced its Series A fundraise of $25 million in a round led by GGV Capital. Angel and other investors – SVCI (Silicon Valley CISO Investments), Okta Ventures, Basis Set Ventures- participated in the funding round.Rocketlane, a B2B SaaS, received $3 million in initial investment from Matrix Partners India and Nexus Venture Partners. According to a senior corporate executive, the cash will be used to grow the company and hire more employees. Srikrishnan Ganesan, Vignesh Girishankar, and Deepak Bala established Rocketlane in 2020 as a purpose-built unified workplace for interacting with clients on onboarding efforts.

Videohttps://youtu.be/CSe5YZoBWpYLinks 03:51 Crossing the Enterprise Chasm (Michael Grinich) 05:02 Introducing WeDeploy 19:19 WorkOS - Your app, Enterprise Ready 29:01 LaunchDarkly 29:03 Split.io 29:21 Twitter Blue 46:39 Vanta 46:41 Drata

Show notes:Links:TwistHook RelayBen Orenstein TupleWrite for HoneybadgerFull transcript:Starr:So Ben is joining us today from his car. It's bringing back fun memories. I recorded, I think the voiceover for our very first demo video in my car.Ben:Oh yeah? Nice. So as you may recall, I have a two story building that I lease one of the rooms, and the downstairs is a wine tasting room. Well with the pandemic, the company that had the wine tasting room, they closed shop. They stopped leasing, because who's going to go to a wine tasting room during a pandemic, right? Well they're leasing the space to a new tenant that's going to take that space. Apparently hey, we're getting back, things are reopening, let's taste wine again, but the new tenant wants to have a new door put in. So I got to the office today and they're like, "Yeah, we're putting in a new door." And then I'm like, "Cool." Didn't even think much of it. But then a few minutes later, there's all this drilling going on. I'm like, "Oh, I think probably the car is a better place to record today."Josh:Well at least you'll have some new friends soon.Ben:True, true.Starr:Yeah. Well I'm glad you made it, at least. And so what's up? I missed a week of the podcast and you guys invested our entire Honeybadger savings account into Bitcoin.Josh:Yeah.Starr:And I'm not sure that was the most prudent investment decision, y'all. I just wanted to say that.Ben:Yeah, the timing could have been better.Josh:Yeah, we really pulled a Roam Research on that one.Starr:Oh yeah. What do you mean by that?Josh:They invest in Bitcoin, apparently.Starr:Oh, they do? Okay.Ben:Of course they do.Starr:Of course. It's just a dip. You're supposed to buy the dips, Josh. It's just what, like a 30% dip? 40% dip?Josh:I wasn't watching it, but I read that it had recovered pretty quickly too.Starr:Oh. I have no idea. I didn't even follow it.Josh:As it does.Starr:I don't even follow it.Josh:Yeah. I just read random people's opinions.Starr:There you go.Josh:I forget where we left it last week, but I just wanted to state for record that I think I mentioned I made some accidental money in Bitcoin back when I was learning about block chain technology, but I have not bought any Bitcoin since, nor do I intend to, and I do not really view it as an investment asset.Starr:This is not investment advice.Josh:I just need to state my opinions for the future so I can look back on them with regret. If I don't say what I actually think, I'm never going to have anything to regret.Starr:There you go.Josh:I'm just going to commit.Starr:So you've decided to die on this no intrinsic value hill.Josh:Right. I'll let you know if I change my mind.Starr:Okay, that's fine. That's fine. Yeah, I don't really check. Last week y'all did the interview with Mike, right?Josh:Mm-hmm (affirmative).Josh:Yeah, it was a good conversation.Starr:Yeah. I don't really pay attention to it, except occasionally I'll look at the chart. It's the same with GameStop. Occasionally I'll look at the GameStop chart and then just see what wild stuff people are saying about it. Yeah.Ben:Yeah, GameStop was hovering at about 150 for a while, but now it's up to like 170-ish, 180. Something like that. Yeah. I peek at it every now... it's on my watch list when I log into my brokerage account, so I just see it. I'm like, "Oh, okay. Cool." And then I move on and check out my real actual stock portfolio.Starr:Oh yeah, yeah. I'm not going to buy it. It's like a TV show for me.Ben:Yeah, totally.Josh:Yeah. To be fair, I really don't have much of an opinion either way. I still don't understand it, so I don't know. I just feel like I probably shouldn't be buying it.Starr:That's really good advice. I don't understand anything though, so what am I supposed to do, Josh? Huh? Huh?Josh:Yeah.Ben:Just buy the index fund.Starr:Yeah. I don't even understand that.Josh:I don't understand that either though, if you really think about it.Ben:That's actually, there was a good thread or so on Twitter. I don't know if it was this week or last week, but basically the idea was if you feel really confident in your own ability, in your own business, given that, you're probably spending most of your time in that business, right? We spend most of our creative time in Honeybadger because that's where we feel the most potential is. So you're investing basically all of your personal capital in this one business. How do you diversify that risk? Or do you diversify the risk? Do you double down? Maybe do you take investment to diversify, and so you buy out? Let someone do a secondary and so you take some cash off the table? If you did that, then where would you put the money? Do you just go, "Okay, I'm going to go buy Bitcoin. I'm going to go buy an index fund," or whatever. And if you do that, is that a better use of your money than having just kept the equity and just plowing more time into your business? Right?Josh:Yeah.Ben:It's an interesting thought exercise. It's like, "Hm." The whole investment mindset of your business is interesting to me.Josh:Yeah. Yeah, that was interesting. I think I saw that conversation, or maybe I saw a similar conversation where they were talking about even just 401Ks and for founders who are already fairly... have at least made it in whatever sense that means. Is it the best financial move to keep maxing out your 401K versus investing in your ability to generate revenue in your business?Starr:So a little bit of real talk here. If you are a founder who's made it, maxing out your 401K isn't really a blip on your financial radar.Josh:It's not a big... yeah. That was kind of the same thought I had. It's not like you're putting 50% of your income into it.Starr:Yeah. What is it, like 20 grand? Something like that?Josh:Yeah.Starr:It's a good chunk of change, but still. It's not like...Josh:Yeah. I don't know.Starr:Yeah, that's interesting. I think I'm just going to go all in on Pogs. I think they're due for a comeback. I think that's going to be how I diversify.Josh:But I think it's probably a good move to invest in yourself if you have the ability to build businesses. That definitely seems like a good investment, in any case. Probably still have a 401K. I tend to do everything, except Bitcoin.Ben:A 401K is a nice backstop. Just keep stocking money away, and later it will be there, hopefully. But in the meantime, really, really spend your time and your energy on making your business even more profitable. Speaking of making your business more profitable, so this past week or two weeks, I've been working on our SOC 2 type two audit, so I'm doing the evidence collection.Starr:Oh yeah?Ben:So that in this case means I take a bunch of screenshots of settings, like the AWS console and G-suite console to show yeah, we have users, and yes, we have login restrictions, et cetera. All the 150 different things that you're supposed to check off the list when you do the audit. And as I've been going through this process taking all these screenshots, honestly it's getting a bit tedious, and it's surprisingly time consuming. And so I'm like, "You know, there are services for this sort of thing. Let me check them out." And so in the past three days, I've had conversations with Vanta, Secureframe, and Drata. These are three providers that what they do is they provide almost SOC 2 in a box. Basically they help you connect all of your systems and get the evidence that you need for an auditor in a more automated fashion. So for example, they'll plug into your AWS account and they'll pull out information about your security groups, your application firewall, your AIM, all the access permissions, all that kind of stuff, and pack that up into a nice little format that the auditor can then look at and like, "Yeah, they're good on all these different requirements." So you don't have to take screenshots of security groups.Ben:And I hadn't really looked at them before because I was like, "I don't know if I just want to spend that kind of money," but actually sitting back and looking at it, looking at the time that I'm spending on this and the amount of time I'm paying our auditors to audit all these screenshots that I'm taking, actually I think it would be cheaper to go with one of these services, because your audit is a bit more streamlined because the auditor knows how that data is going to come in and it's an easy format to digest, et cetera. But the thing is that after having gone through some of the sales pitches from these vendors, I'm thinking I really wish I would have started with these back the first time, because I think it would have been much easier just from the get go. So I think I've been doing the SOC compliance on hard mode, unfortunately, but lessons learned.Starr:With my experience, that just seems to be how projects are. You do it one time and you don't really know what you're doing, and you just push your way through it, and then eventually you figure out how to do it better and easier and all that. Because when something is new to you, you don't know what you can safely ignore. You know?Josh:Mm-hmm (affirmative). Yeah. Well plus you're pumping up the value of FounderQuest.Starr:Oh, that's true. We got a lot of content out of that.Ben:That's true.Starr:At least $100 worth.Josh:That's useful knowledge. Yeah.Ben:Yeah, so I think the short version is if you are interested in doing SOC2 compliance and you have no idea what you're doing, talk to these vendors first and maybe just start with them. They will help you, because they have customer success people like SaaS does. They have people on staff who are there to help you have success with their product. And if you don't get compliant, then you're going to stop using their product, so they're going to help you try and get there. And it's still pricey. It's still going to be five figures a year, but it will definitely save you some time and maybe even save you some money.Josh:Nice.Ben:Yeah. So next year, our audit should just be smooth as silk.Starr:Just butter.Josh:Love it.Starr:So if we-Josh:What are you going to do with all that extra free time?Ben:I made an executive decision.Starr:Oh really? What's that?Ben:Yes. The executive decision is we're going to have more teamwork at Honeybadger.Starr:That's ironic.Josh:Instead of what? What we have now, which is anarchy?Ben:We pretty much do have anarchy, I think. We are coordinated, we do make our plans, and we do have things we want to get done, but yeah, we are very independent at Honeybadger. We work independently. You might even say we're kind of siloed. We go off in the corner and do our own thing for most of the time. And I was chatting with Kevin about this, and I think we're going to try an experiment. So I think we're going to try to actually work together.Starr:Kevin is our developer.Starr:Yeah, so you all are going to be developing features together. Are you going to pair program? Are you going to use Tuple?Ben:Whoa, whoa, whoa, whoa. Slow down there.Starr:Are you going to mob program?Ben:Pair programming, that's maybe too advanced for us, I think. Maybe actually we'll chat in Slack a little bit here and there and maybe have a Zoom call.Josh:Yeah, so you're talking about you're both going to work on the same project at the same time.Ben:Right. Right.Josh:Mostly independently, but coordinating.Ben:Right. Yeah.Josh:Yeah. Yeah, I don't know. I think that still can fit into our anarchy model.Starr:Yeah. It still seems a little bit independent.Josh:It's more like mutual aid or something.Starr:There you go. We should make a conference talk about mutual aid development.Josh:Right.Starr:That would go over well.Ben:Using NATO as a model for your development process. Yeah, so we'll see how it goes. I'm looking forward to it. I think I've been feeling a little lonely. I don't know if it's the right word, but maybe just off doing my own thing. I was like, "Oh, I think it will be nice to have some collaboration, some coordination." Maybe we'll even get to a level of synergies.Starr:Synergies.Starr:That's a blast from the past.Josh:Yeah, I think it's a good idea.Ben:Yeah, so more to come on that. We'll keep you posted. It's a bigger project. May not have results for a couple months. Don't really want to spill the beans on what it is right now. Competitive information. Don't want to leak it to all of our competitors.Starr:I like that. I like that. It's going to keep people on the hook for the next episodes.Josh:Totally.Ben:But yeah. That was my week.Josh:Yeah. Well my week, I took some time off, had some family stuff going on, so I was not very productive this week, but what I did work on was I've been working on this little guide for Hook Relay. I'd love to get the marketing machine, the fly wheel going on that at least, so we can be moving that along with everything else. And so yeah, working on some content and such.Starr:What is Hook Relay?Josh:Well you tell us what Hook Relay is, Ben. It's your baby.Ben:It's my baby. Yeah. So Hook Relay is a tool for managing web hooks. So you can record web hooks as they go out. In our case, to Honeybadger, we send a lot of web hooks, and so we built Hook Relay to help track all that web hook action. So we logged as pay loads that can go and diagnose issues that are happening, or maybe replay them as necessary, and of course it also handles inbound web hooks. So if you were handling, let's say, a post pay load request from GitHub about some activity that happens in your GitHub account, you handle that web hook and we can give you a place to store that, and then you can replay that, send it, forward it onto somewhere if you want, or just store it.Josh:Yeah. I think one of my favorite things about Hook Relay is just the visibility that it gives us into what's happening with the hooks, because otherwise we never had a dashboard. I guess we could have built one internally to see what the activity was and what's failing, what's actually... what requests are... because you're connecting to thousands of different people's random domain URLs, basically. It's really nice even for debugging and things like troubleshooting to be able to see what's going on, in addition to all the other cool things that it gives you out of the box.Starr:So you might say it's even like turnkey reliability and visibility for web hooks. For all your web hook needs.Ben:Yeah. Yeah, we modeled it on Stripes web hooks because we loved-Starr:I'm holding up a box up. I'm holding the TurboLinks box up and gesturing at it with my hand.Ben:Vanna White style.Josh:We should do our own channel, do our own infomercials.Ben:Yeah, I really wanted experience of Stripe. If you set up web hooks in Stripe, you can go and you can see all the web hooks they've sent you. You can see the pay loads, you can see whether they were successfully delivered or not, and I wanted that experience for our own web hooks, and also I thought it would be cool if developers could just have that without having to build the infrastructure. And so if you're building an app that send a bunch of web hooks on behalf of your customers, well now you can give your customers visibility into that web hook activity without having to build that tracking yourself.Josh:Yeah. That's pretty cool. So basically this content guide I'm working on is how to build web hooks into your application, including all the reliability and stuff that Hook Relay gives you for free. And the idea is that if that's what you're doing and you just want to save some time, Hook Relay will be a large chunk of that. You've just got to sign up. So I think it will be useful to everyone, even if they don't become a customer. If you're going to build your own back end and handle all the retries, build dashboards, and all that. But if you want it all turnkey, then Hook Relay is a big chunk of that work just done of you.Starr:So is this live? So can people go and sign up now?Ben:Yeah.Josh:Hook Relay, yes. It is.Josh:Hookrelay.dev.Ben:Yeah. In fact, we have enough customers now that it's actually paying for itself.Starr:What?Ben:Yes. So sweet.Josh:It's wild. That's wild.Starr:That's amazing.Ben:So Josh, is your guide going to have... are you going to dive deep into the architecture of here's how you build a whole web hook system, and so we're going to show you all the stuff behind the curtain so you can build your own? And then, "Oh, by the way, if you want it just done for you, here it is." Or are you going to just keep it more high level?Josh:I'm starting more high level. Yeah, I was planning on it being more high level. More like a high level architecture thing, or specification. Like these are the parts that you'll need to build, but you're going to have to solve some things, because it's not going to be specific to one system. It's not going to be like, "This is how you build web hooks for Ruby and Sidekick, or if you're going serverless." It will have suggestions on stacks or technologies to use for the back end, for instance, but yeah. I was thinking of leaving that to the user to figure out, but just showing the things you need to think about that a lot of people don't think about until they encounter the problems that might arise, like retrying and all the error handling that you add later, and validation for security reasons and things.Ben:Yeah. Yeah.Starr:This is giving me flashbacks to a whole two or three year process after we first launched.Josh:Yeah.Starr:It was just like, "Oh, crap. There's an edge case here that we didn't think of because we're not used to doing web hooks at this scale." And that just went on for like three years.Josh:Yeah. And it's nice having the two products because Hook Relay came out of Honeybadger and it's basically part of our web hook system. This is basically just documenting Honeybadger's web hook system for other people who might want to replicate that or whatever.Ben:Totally. I think that will be cool. A great piece of content, a great piece of SEO juice. And if you did decide to go deep into the technical side, like if you explain the entire infrastructure that we're building, that would actually be kind of cool too because you could maintain your technical documentation for the system internally and use it as a piece of content for marketing.Josh:That could be cool. Yeah. That's not a bad idea. Yeah, I was thinking just because I want to get something out there. I'm thinking it will help with both, having a resource for people who are already on the site to see this is basically how you will implement this. It's kind of like an implementation guide, really. But then also SEO. It should help get us in more search results.Ben:Yeah.Josh:And I also want to credit Ben Orenstein and and Tuple. They have a great pair programming guide which was an inspiration for this idea. I just really liked the format that they used, and I just think it's a great idea if you have a product that's highly targeted or focused on one specific thing and doing it really well. I think it's maybe even a great alternative to a blog, for instance. You can get some of the same benefits of having a blog, but without actually having to create a blog with a lot of different variety of topics and things.Ben:Speaking of the blog, I was talking to Harris, our sales guru, about our blog strategy, and I said, "Yeah, it's basically like a flypaper strategy. We want it to attract developers that come and see the content and they love it and they're like, 'Oh, let me check out this Honeybadger thing.'" Not particularly novel, but I like the flypaper idea.Starr:That's a good metaphor. And also for a long time, I poo-pooed SEO because in my mind, SEO was very scammy. I don't know. I learned about SEO in the days of link farming and all that, and I just didn't want to be involved in that. So I'm just like, "We're just going to put out good content and that will be enough." And it is, yes, but also I've looked at some metrics since then that make it clear that the majority of good things that happen because of our blog actually are people entering through search queries. That really outweighs people sharing articles and doing stuff like that, which I guess is obvious that it would be that way, but my own bias against search just made me not see that for a while. So maybe trying to pick some possible low hanging fruit. We've tried to make our site search engine friendly, but we having really done any explicit SEO type activities.Josh:Yeah. I went through recently through our documentation and just tweaked just small things on a bunch of pages, like headlines and some of the meta tags and stuff, but mostly headlines and content on page was what I was focusing on. And I wasn't using any particular tool to measure before and after results, but it does seem like it bumped us up in some of the results for people searching for more general terms like Ruby error tracking, for example, which are typically pretty competitive terms. But I think we rank pretty well for some of those terms these days. I think we've been around enough and we're one of the options that come up. So it does seem like if you already target the terms, it actually does what they say it does, which is good to know. You've just got to pay attention to it.Ben:So the moral of story is there is some value in SEO.Starr:I guess so.Josh:Yeah. Well and I think documentation sites. Your documentation, I think it's a great place to optimize SEO because a lot of times, especially for those... maybe not for the long tail searches. A blog is great for that, like what you were talking about with the flypaper, Ben. But for people who are actually searching for what you do, I think a lot of times documentation pops up first in a lot of cases when I'm searching for things, so don't overlook it like we did.Starr:Yeah. Well this week, I guess the main thing I did was I got our authors lined up for the next quarter of intelligence briefings. So if you haven't been playing along at home, we're having some intelligence briefings created. Basically everything that's going on in a certain language community for the quarter, and this grew out of Josh's need because he's basically in charge of our client libraries. And we have libraries in a variety of languages, so keeping up with those languages and what's going on is a real pain in the ass, so we were going to make these guides originally for him, but then also we were like, "This would be really great content to publish."Starr:And I've already got this system with authors who want to write about programming languages, and so let's see if we can make some authors make these summaries. And so far, yeah, I'm pretty happy. We had four or five of them created, and we're not publishing them because they were for a previous quarter, and this is just a trial run to see if the results are okay, and I think they were. I think the results were pretty good. We go some feedback from you two, and I updated my process and updated the template that all the authors are using, and so we should be getting round two done. I'm setting the deadline a week after the end of the quarter. My hope is if they get them to me then, then I'll have a week to get them up on our blog or wherever, and then they won't be too out of date by the time people see them.Josh:Yeah. That's cool. I'm excited to see the next batch. My favorite thing from the reports were the ones where they wrote some original content summarizing things or sections or whatever. That was super useful because there's a little bit of a story element to it that's specific to the quarter or whatever that you don't really get from just... if you just aggregate everything, all the weekly newsletters and what happened on Reddit and what happened on Twitter. If you just dump that all in a document, it's a bit of overload, so it's nice to have the summary the story of what the community was interested in.Starr:Oh yeah. Definitely.Josh:Here are some articles that they talked about.Starr:That's the whole idea, is to have somebody who knows the community explain to you what's going on, as opposed to... if I wanted a bunch of links, I could just write a little script to scrape links from places.Josh:Yeah.Starr:And it wouldn't be very useful. What's useful is having people who know the environment being like, "Hey, this is what's going on. This is why it's important." And yeah, so that's going to be something I guess I need to look for explicitly when I get this round of things of reports back.Josh:Start calling them secret agents or something instead of authors.Starr:Oh yeah.Josh:Or detectives.Starr:Operatives. Yeah. Assets.Josh:As our detective service investigators.Ben:I think having that analysis of why this news is important or why these things are important that they've collected is really handy, because the links are great. Like you said, I could just write a script to collect them, but having someone with that context in the community saying, "Okay, and it's important because, and this is why you should pay attention," I think that's really helpful to someone who's maybe not as deep into that every day.Starr:Oh yeah.Josh:Yeah. And also knowing what to surface, because there was one report that it really seemed to just dump every single link or article that was discussed or was in a newsletter or whatever, and I think it's more helpful if it's on a quarterly level, if you know what is actually the important things that you really want to know about.Starr:Yeah, that's true. I just made a note for myself to go back and explicitly just mention that to people, because I realized I didn't put it in the instructions anywhere. I put like, "Here's where a description of the content goes," but I didn't really put what I want inside that description, I realized.Josh:Yeah.Starr:So I'm going to do that.Ben:We're iterating in real time here.Starr:Oh yeah, yeah. This is where the work gets done.Josh:Yeah. Well and pretty soon, we'll have hopefully some good examples that we can show future authors, or detectives, or whatever we're calling them.Starr:Oh, definitely. Definitely. I'm going to call them authors because they're already in the blog system as authors and it just seems like-Josh:Agents?Starr:I don't know. I've got to be able to talk to these people with a straight face.Ben:You could call them research specialists, but then you might have to pay them more.Starr:There you go.Josh:Research. Yeah. Yeah.Starr:I don't know. I think I'm paying pretty well. Honestly, I think I'm paying pretty well for looking at... I don't know. How many weeks is a quarter? 12? 12 weeks of newsletters and just telling me what's going on. I think I'm paying pretty well.Josh:Yeah. You don't need to talk to them with a straight face though. You need to talk to them with sunglasses on, smoking a cigarette in a diner.Starr:Oh that's right. Yeah.Josh:Or a dive bar somewhere.Starr:Those people aren't smiling. Those people aren't smiling. Oh, that's right. I can do that. I just realized that it's two weeks since my second vaccine, so I'm ready to go out and recruit secret agents.Josh:Ready to party.Starr:Yeah. I'm very anxious talking with people in public now, but that's not a topic for this conversation.Josh:Yeah. We'll ease back into it.Starr:Oh yeah. Yeah, we're going to have dinner with my sister in law on Saturday, and I'm just like, "Okay Starr, you can do this. You can do this."Josh:Cool.Starr:Yeah, and I guess the other thing that we did this week is we are doing a trial run of Twist as a replacement for Basecamp messages, the message board on Basecamp. And yeah, so basically the long and short of it is the whole Basecamp BS just left a bad taste in my mouth in particular. I think you all's a little bit, or maybe you're neutral. I don't care. That sounded really harsh.Ben:You can be honest with us. We can take it.Starr:No, I didn't mean to sound that harsh. I just mean I'm not trying to put my opinions onto you, is what I'm saying. I just felt gross using Basecamp. Also if I'm being honest, I never really enjoyed Basecamp as a product. It's got a couple things that just really rubbed me the wrong way.Josh:We were having some vague conversations in the past. We have posed do we really want to keep this part of what we're using Basecamp for? And we were already using a subset of it, so yeah. It wasn't totally out of the blue.Starr:Yeah. And we were using maybe 20% of Basecamp, just the message boards feature.Josh:And the check ins, which apparently we all disliked.Starr:And the check ins, which nobody liked but we all kept using for some reason. Ben is like, "Can I turn off the check ins?" And I'm like, "I thought you were the only reason we were doing the check ins, it's because I thought you liked them."Ben:I think I was the only reason we were doing the check ins.Josh:It's because... yeah.Ben:Yeah, because I remember when I started it I was like, "Yeah, I really don't know what's going on," because back to that siloed, independent, off in the corner thing, I was like, "It would be nice to know what people are doing." But yeah, lately I've been like, "This is just a drag." So I'm like, "Would anybody be upset if this went away?" And everyone is like, "Please take it away."Josh:Everyone is just passively aggressively answering them.Ben:Everyone hated it.Josh:It wasn't that bad, but-Ben:I get it.Josh:Kevin used them too, but yeah.Ben:So I finally gave everyone permission to tell me that it was not okay, and now we no longer do it.Starr:There you go. And we're just like, "While we're at it, just ditch Basecamp." So yeah, so we've been trying a new system called Twist. Twist is, essential it's... I don't know, it's like threaded discussions. I figured this out on my own. I'm very proud of myself. So you have lots of threads, and you twist them together to make yarn or something or some sort of textile, so I bet you that's why it's called Twist.Josh:Beautiful sweater.Starr:Yeah. A beautiful sweater. The tapestry that is Honeybadger. And so far, I've really been enjoying it. I find the UI to be a lot better. There was one bug that we found that I reported, so hopefully that will get fixed. It doesn't really bother me that much. Yeah, it's amazing sometimes how the UI of an application can just be like, "Oh, ah. I'm having to parse less information just to do my task."Josh:It's much nicer.Starr:Yeah.Ben:It does feel like a lot less friction for our use case.Josh:Yeah. Well we talked about that, just the structure. The way that you structure conversation and organization things in a management tool like that makes a big difference. In Basecamp, we would create Basecamps for whatever. They call them Basecamps, right? They're the projects.Starr:They're like projects. I don't know.Josh:We'd create different ones, different projects for each project, but then there's five of us, so we'd basically just add everyone to every single project that is in there. But all the conversation is siloed off in each project, and with Twist, it's just much more of a fluid... it uses what, like channels? But yeah, it just seems like it's all together. It's kind of like a combination of Slack and a threaded message board or something, to me.Starr:Yeah, or like Slack and email or something.Josh:Slack and email. Yeah. It's a nice combo.Starr:Yeah. It has inbox, which I like, where it shows you any unread messages, and so you can just easily just go and scan through them, and it's all in the same page. It's a single page application, so you don't have to click out to a completely new page and then come back to the inbox and do all that. Basecamp had a similar feature, but it's like a timeline and it had a line down the middle of the screen and then branches coming off of either side of it. And for some reason, I started using the inbox in Twist and it was just like, "Oh, this is so much better." For some reason I think having things on different sides of the screen just doubled the amount of background processing my brain had to do to put it all together. And yeah, so I don't know. I do like it. Also, it's got mark down. It's got mark down.Josh:The mark down editor is so nice. It reminds me a lot of just using GitHub, the editor on GitHub, with the mark down mode and preview. And you can drag and drop images into the... I don't know if you knew that, into the mark down editor, like you can on GitHub, and it automatically inserts the image tag and uploads it for you.Starr:Yeah, it's all really slick. So I don't know. I imagine in maybe another... I've got vacation next week, so maybe after that we'll get together and compare notes. But I don't know, it seems like people like it so far.Josh:Yeah.Ben:Yeah, it's been good. It's interesting-Josh:If I had to decide today, it's a keeper for me.Ben:Yeah, I would go ahead and switch.Starr:Oh yeah, me too.Ben:It's interesting to me, you alluded to this, Starr, as you were talking about comparing it to your products and how they approach... it's interesting to me the UI, even if it's the same kind of functionality, how much different takes on the user experience can make a different experience for the user. How it just feels different. Like, "Oh yeah, it's basically doing the same thing, but it just feels better for whatever. My mentality or our business." Fill in the blank there, but I thought about that many times. Honeybadger versus competitors. It's like, "Yeah, they're doing basically the same thing, but we do have differences in how we approach the UI and different use patterns that we think are more emphasized by our UI versus the others." And sometimes it's just a matter of personal preference. It's like, "Oh, this just feels better to me." One night I tried Python before I tried Ruby, and Python is like, "Oh, that's interesting," but then Ruby really clicked my brain. It's like, "Oh, it just feels better." And I'm sure other people have the opposite experience, but I don't know. It's weird to me and fun to think about the human part of these products. Josh:Yeah. And it's surprising, the strong opinions that people pick up just based on those experience things when they're basically the same, if they're doing the same thing. Some people, they either love it or hate it based on that.Starr:Yeah, that's true. Maybe it all goes back to whatever business apps you used in childhood. It's just whatever your mom made you for lunch, you're always going to love that.Josh:Yeah. It's like a nurture thing, nature versus nurture. You were exposed to these apps when you were young, and so it's just what you're drawn to.Starr:Yeah. I remember putting my little friend's contact details into Lotus Notes.Josh:Right. I had to program Lotus Notes.Ben:I got my first dev job because I knew Lotus Notes.Starr:Oh, nice.Josh:Lotus Notes was an important precedent at the time, I think.Starr:Yeah.Ben:Yeah. Yeah. It was the bomb. You could do some pretty serious stuff.Starr:Yeah. I kept having these jobs that weren't technically dev jobs, but ended up being dev jobs just because I knew how to write V basic macros for Excel. I'm sure a lot of people had that experience.Josh:The thing I remember doing in Lotus Notes was setting it up to ingest email from the outside world into whatever, the system. And thinking about it now, that project I've done over and over and over since then.Starr:It's Basecamp.Josh:And I'm still doing that project.Starr:It's Basecamp all over again. Oh no.Ben:If only there was a service that took in emails for you, and then you could just bring them into your app data.Josh:Yeah. I bet in 20 years, we'll be writing programs to accept email.Ben:Process emails, yeah.Josh:Yeah.Starr:Yeah. When is this stuff going away? Technology changes all the time. When is email going away? They've been killing it for years. It's like fricking Rasputin. When is it going away?Ben:It's the cockroach of protocols.Starr:There you go.Josh:After the singularity, they'll still have to have a way to import it directly into your consciousness, and yeah, I don't know.Starr:Yeah. I hope the spam filtering is really good then.Starr:All right, well it was great talking with y'all.Ben:Likewise.Starr:Yeah. So this has been FounderQuest. Go to the Apple podcast and review us if you want. If you're interested in writing for us, we are always looking for fresh, new talent. Young authors looking to make their mark on the world of technical blog posts for SAS companies. And yeah, just go to our blog and look for the write for us page. I don't currently have any openings, but who knows? People flake out. So if you're interested in writing these reports for us too, get in touch. These quarterly intelligence briefings, if you want to be an agent for our intelligence service. All right, so I'll see y'all later.