Building a Security-First Culture: Practical Lessons from Kruze Consulting | SOC 2 Compliance

Join Derrich Phillips, Lead Certified CMMC Assessor (CCA), as he interviews Tatiana Marin, Director, Information Security at Kruze Consulting. In this episode, Tatiana shares her unique journey into cybersecurity, her strategies for building a strong security culture, and valuable insights on navigating SOC 2 compliance. Aspire Cyber serves as Kruze Consulting’s virtual Chief Information Security Officer (vCISO), leads their SOC 2 compliance efforts.

Key Topics Covered:
- Transitioning from operations management to cybersecurity leadership
- Practical tips for managing SOC 2 audits and selecting the right tools
- The importance of leadership support and fostering a security-first mindset
- Leveraging external partners to enhance cybersecurity for small businesses
- Balancing rapid growth with robust security in a remote work environment
- How Kruze Consulting partnered with Aspire Cyber to achieve SOC 2 compliance.

Takeaways:
Tatiana highlights the critical role of collaboration, effective communication, and leadership buy-in in creating a resilient cybersecurity posture. Her insights offer actionable advice for companies of all sizes.

Whether you're tackling SOC 2 compliance or looking to improve your cybersecurity practices, this episode is packed with practical guidance and inspiration.