Many companies are being driven and required to meet growing compliance standards such as SOC 2, ISO 27001, and others. While these standards can be overwhelming for businesses that don’t have the resources, they also signal a recognition of the fact that our digital world is so interconnected that a vulnerability at one company affects all of its partners as well. Weighing in on the current state of affairs, Mike Brooks remarks:

“We’re seeing an uptick in compliance standards across industries. And the reason [for] that is if you think of compliance as the minimum viable security posture that your vendors and regulators have. So they’re clearly communicating … this is our risk tolerance for doing business with you or through you or in partnership with you. So maintaining that viewpoint is extremely important because it’s going to start preventing business opportunities.”

In this episode Ferris and Brooks discuss:

• The convergence of cybersecurity and compliance in the new category MCCP;
• How MSSPs can avoid getting attacked themselves;
• And the future of cybersecurity and compliance.