The concept for Compyl came from years of on-the-job experience our co-founders, Stas Bojoukha and Simon Shaddock, had while holding CISO roles for large enterprises. They continued to see the same issues surfacing when implementing information security and compliance programs. A robust program requires cost-prohibitive tooling, lengthy implementation, large teams to share the workload, and a bit of trust that the tasks are being completed on time. The “trust” aspect was regularly highlighted in audits as a deficiency. No one application represented a complete overview of an organization’s overall security posture. These security and governance gaps led Stas and Simon to create Compyl, the only all-in-one information security tool that would allow an organization to manage security and compliance workflows in a single location by leveraging integrations and automation.
Let’s take a deeper look at just a few of the challenges surrounding information security and compliance, and why organizations consistently struggle to maintain a suitable program.
The average tenure for a CSO or CISO is between 18-26 months; 24% of security leaders are in their roles for a year or less.The loss of staff diminishes institutional memory. New hires continually reinvent the wheel, creating redundancies and leaving gaps that weaken an organization’s overall security posture. All of these issues are what keep information security experts up at night. They are constantly wondering:
These challenges are the basis for the type of solution Stas and Simon were motivated to create. A tool that solves the real-world problems an organization deals with when facing security and compliance regulations and controls.
In the fall of 2017, Stas and Simon started Compyl. The all-in-one information security and compliance solution integrates into an organization, collects and evaluates their data, and automates the tasks and workflows required to maintain continuous security and compliance. Compyl becomes your go-to information security and compliance knowledge base that you can rely on to understand what is occurring within the organization at all times. It is a scalable solution that tracks your progress for reaching compliance to any desired security frameworks or regulatoryrequirements, as well as demonstrates maturity over time throughout your journey. Instead of wishful thinking that controls are in place and being properly implemented, Compyl gives you confidence with a robust security program that will evolve and adapt alongside your organization.
After four years of development and many organizations using Compyl every day we believe we have solved one of the industry’s biggest challenges. Instead of having large security teams and multiple pieces of software that don’t communicate with each other, Compyl is simple and seamless. With a robust, single pane of glass approach that is scalable and simple – your organization can finally enjoy the confidence of a proper continuous security and compliance solution.