Live Webinar | 26 June 2025 9AM PT
From Black Box to Boardroom: Operationalizing Trust in AI Governance
HomePodcast

The upshot of (un)continuous compliance

Featuring

Todd Dekkinga

With a dynamic personality and over 25 years of IT management and security expertise, Todd Dekkinga steps into the spotlight as the new host of Risk Grustlers. As the CISO and COO at Cyber Way US, and advisor to startups like Box and Zoom, Todd is the perfect guide to help you navigate the complexities of risk and compliance. Todd and our CEO and Co-Founder, Aayush Ghosh Choudhury, share an undeniable passion for security and startups, which shines through in this lively episode. They share actionable advice and deep insights, including trade secrets you wouldn’t hear elsewhere. You don’t wanna miss this!

Category

Todd Dekkinga

CISO and COO, Cyber Way US

The upshot of (un)continuous compliance

00:00 / 00:00

Listen on Your favourite platforms

Description

In this episode, we explore Todd’s unorthodox path to compliance, GRC, and risk management – a testament to the diverse paths that can lead to a career in risk management.

He highlights the pivotal moments that shaped his expertise, including the dot-com crash of 2001 and his work in highly controlled environments like biotech.

Todd discusses the common mistakes startups make during the SOC 2 compliance process and offers practical advice on maintaining compliance post-certification.

He also elaborates on the role of automation in GRC, particularly in optimizing compliance efforts for companies of different sizes.

Todd’s insights will provide valuable perspectives on navigating the complexities of compliance and risk management. Tune in to uncover the true upshot of continuous and non-continuous compliance!

Highlights from the episode

  • Todd’s journey into compliance and risk management
  • Navigating compliance in startups vs. large companies
  • The role of automation in GRC
  • Practical tips for continuous compliance
"The dot-com crash of 2001 was a turning point for me, leading me to focus on IT efforts in regulated industries like biotech. Working in highly controlled environments laid the foundation for my understanding of compliance and risk."

"One common mistake among startups is neglecting to maintain compliance post-certification. Many overlook the continuous monitoring required, leading to frantic efforts to catch up during surveillance audits."

"Automation plays a crucial role in simplifying compliance tasks, particularly for smaller companies with limited resources. Automated tools like Scrut streamline processes, reduce manual effort, and ensure consistency in meeting regulatory requirements."
Subscribe to our newsletter
Get monthly updates and curated industry insights
Subscribe
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Join the Unlimited

Get that doubles sales or startups is send a performance

Book a Demo

Share on

Join our community and be the first to know about updates!

Subscribe
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Ready to see what security-first GRC really looks like?

The Scrut Platform helps you move fast, stay compliant, and build securely from the start.

Book a Demo
Book a Demo