22 subscribers
התחל במצב לא מקוון עם האפליקציה Player FM !
פודקאסטים ששווה להאזין
בחסות


Software at Scale 19 - Vanta
Manage episode 291533312 series 2899471
Christina Cacioppo and Robbie Ostrow work at Vanta, an automated security and compliance company with a mission to secure the internet. Vanta sets up monitoring via a set of continuous tests to ensure basic security best practices, like mandatory MFA for employees. Each test bubbles up to one or more compliance standards like SOC-2 so that companies can rapidly move their audits and unlock deals.
Apple Podcasts | Spotify | Google Podcasts
This episode is special because of two reasons: I currently work at Vanta, and it’s the first combined interview with both the CEO and the first engineer at the company, which led to an interesting conversation with multiple perspectives.
As usual, the episode focuses on the technology and business of Vanta, and I’ve tried to not go easy on them, even though there’s an obvious bias involved :)
Highlights
My notes are italicized
2:00: “In order to work on a security company, you’d actually best start with compliance company” - compliance is a “hair-on-fire” problem for companies since it helps unlock deals, whereas security is often an afterthought. Solving compliance helps make companies safer since the incentives align better. This idea and the headache of SOX compliance at my previous job convinced me to work at Vanta.
5:00 - Continuous security monitoring vs. snapshots that are double-checked in audits
11:00 - How Vanta was initially built.
17:00 - Should security reports be standardized or extremely customizable per company?
20:00 - How does someone decide on the set of security policies? Do customers ask for advice?
31:00 - How should engineers think of developer productivity for their startups? What has the impact of initial choices like MongoDB and GraphQL been as the company has grown?
40:00 - At what point should a founder decide to hire an engineer? What qualities should the engineer have? At what point should the founder stop interviewing engineering candidates?
52:00 - How to effectively build a brand for a security company? Experiences over the past few years.
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.softwareatscale.dev
60 פרקים
Manage episode 291533312 series 2899471
Christina Cacioppo and Robbie Ostrow work at Vanta, an automated security and compliance company with a mission to secure the internet. Vanta sets up monitoring via a set of continuous tests to ensure basic security best practices, like mandatory MFA for employees. Each test bubbles up to one or more compliance standards like SOC-2 so that companies can rapidly move their audits and unlock deals.
Apple Podcasts | Spotify | Google Podcasts
This episode is special because of two reasons: I currently work at Vanta, and it’s the first combined interview with both the CEO and the first engineer at the company, which led to an interesting conversation with multiple perspectives.
As usual, the episode focuses on the technology and business of Vanta, and I’ve tried to not go easy on them, even though there’s an obvious bias involved :)
Highlights
My notes are italicized
2:00: “In order to work on a security company, you’d actually best start with compliance company” - compliance is a “hair-on-fire” problem for companies since it helps unlock deals, whereas security is often an afterthought. Solving compliance helps make companies safer since the incentives align better. This idea and the headache of SOX compliance at my previous job convinced me to work at Vanta.
5:00 - Continuous security monitoring vs. snapshots that are double-checked in audits
11:00 - How Vanta was initially built.
17:00 - Should security reports be standardized or extremely customizable per company?
20:00 - How does someone decide on the set of security policies? Do customers ask for advice?
31:00 - How should engineers think of developer productivity for their startups? What has the impact of initial choices like MongoDB and GraphQL been as the company has grown?
40:00 - At what point should a founder decide to hire an engineer? What qualities should the engineer have? At what point should the founder stop interviewing engineering candidates?
52:00 - How to effectively build a brand for a security company? Experiences over the past few years.
This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit www.softwareatscale.dev
60 פרקים
כל הפרקים
×
1 Software at Scale 60 - Data Platforms with Aravind Suresh 34:51

1 Software at Scale 59 - Incident Management with Nora Jones 44:06

1 Software at Scale 58 - Measuring Developer Productivity with Abi Noda 49:29

1 Software at Scale 57 - Scalable Frontends with Robert Cooke 55:42

1 Software at Scale 56 - SaaS cost with Roi Rav-Hon 28:29

1 Software at Scale 55 - Troubleshooting and Operating K8s with Ben Ofiri 44:11

1 Software at Scale 54 - Community Trust with Vikas Agarwal 40:48

1 Software at Scale 53 - Testing Culture with Mike Bland 1:06:52

1 Software at Scale 52 - Building Build Systems with Benjy Weinberger 1:02:57

1 Software at Scale 51 - Usage based Pricing with Puneet Gupta 1:05:05

1 Software at Scale 50 - Redefining Labor with Akshay Buddiga 1:15:46

1 Software at Scale 49 - State Management with James Cowling 53:18

1 Software at Scale 48 - API Gateway Management with Josh Twist 49:36

1 Software at Scale 47 - OpenTelemetry with Ted Young 1:33:41

1 Software at Scale 46 - Authorization with Or Weis 49:05

1 Software at Scale 45 - Q/A with Jon Skeet 50:17

1 Software at Scale 44 - Building GraphQL with Lee Byron 1:04:33

1 Software at Scale 43 - Growth at Loom with Harshyt Goel 43:58

1 Software at Scale 42 - Daniel Stenberg, founder of curl 46:40

1 Software at Scale 41 - Minimal Entrepreneurship with Sahil Lavingia 59:05

1 Software at Scale 40 - Talent Management with Nikita Gupta 35:35

1 Software at Scale 39 - Infrastructure Security with Guy Eisenkot 45:25

1 Software at Scale 38 - Hasura with Tanmai Gopal 1:09:09

1 Software at Scale 37 - Building Zerodha with Kailash Nadh 48:59

1 Software at Scale 36 - Decomposing Monoliths with Ganesh Datta 43:28

1 Software at Scale 35 - Maintaining Git with Johannes Schindelin 55:40

1 Software at Scale 34 - Faster Python with Guido van Rossum 31:11

1 Software at Scale 33 - Drone Engineering with Abhay Venkatesh 41:06

1 Software at Scale 32 - Derrick Stolee: Principal Software Engineer, GitHub 1:06:41

1 Software at Scale 31 - Maju Kuruvilla: CTO/COO, Bolt 58:10

1 Software at Scale 30 - Bharat Mediratta: Coinbase Fellow 53:01

1 Software at Scale 29 - Sugu Sougoumarane: CTO, PlanetScale 1:13:25

1 Software at Scale 28 - Tammy Butow: Principal SRE, Gremlin 58:17

1 Software at Scale 27 - Itiel Schwartz: CTO and Co-Founder, Komodor 43:32

1 Software at Scale 26 - Tramale Turner: Head of Engineering, Traffic at Stripe 1:04:04

1 Software at Scale 25 - Rajesh Venkataraman: Senior Staff Software Engineer at Google 52:16

1 Software at Scale 24 - Devdatta Akhawe: Head of Security, Figma 51:36

1 Software at Scale 23 - Laurent Ploix: Engineering Manager, Spotify 59:32

1 Software at Scale 22 - Sujay Jayakar 1:05:51

1 Software at Scale 21 - Colin Chartier: CEO, LayerCI 57:17

1 Software at Scale 20 - Naphat Sanguansin: ex Server Platform SRE, Dropbox 1:02:35


1 Software at Scale 18 - Alexander Gallego: CEO, Vectorized 1:01:41

1 Software at Scale 17 - John Egan: CEO, Kintaba 58:16

1 Software at Scale 16 - Nipunn Koorapati: ex Software Engineer, Dropbox 1:15:26
ברוכים הבאים אל Player FM!
Player FM סורק את האינטרנט עבור פודקאסטים באיכות גבוהה בשבילכם כדי שתהנו מהם כרגע. זה יישום הפודקאסט הטוב ביותר והוא עובד על אנדרואיד, iPhone ואינטרנט. הירשמו לסנכרון מנויים במכשירים שונים.