I am curious to learn more about what tools people are using to manage security and privacy compliance in their business. I am not talking about technical cyber security solutions like endpoint, firewalls etc. More the administrative and human side of security and privacy.
My company originally started with building awareness training tools and a tool to build security policies, however our customers have pushed us down the road of broader compliance management over the last few months which has guided us towards building a pretty interesting security and privacy management application, we are now trying to get an idea of what different types of companies would use this tool. So far our customers are mostly b2b SaaS companies between 10-500 employees that require compliance reporting for their enterprise customers. For those of you out there that are managing security in your organization, I would be interested in hearing what you use. How does it work? As we continue to build and prepare tp launch our too, what should we be thinking about.
Firing people is popular. (Maybe not good, but popular ...)
But only effective if the specific reason for the firing is announced within the company. Otherwise, there is no incentive to other employees to get with the program.
If you are firing people (plural) as a way to manage security then that is sign that your organization is failing either on recruitment, training, coaching or management. There are times when firing is a necessity, however, if that is the primary tool for managing security at a company, I would be skeptical of the company's security posture.