July 24, 2024
2
minutes

A conversation on Security, Compliance & more at Everest Base Camp

Bil Harmer (Craft Ventures) and Josh Mullis (Productiv) join us in the Himalayas after a trip from Kathmandu to Everest Basecamp. In Part 1 of this In Security Podcast, Pukar, Bil, Ruth and Josh discuss the nature of security reviews and how challenging they tend to be.

Nestled amongst the majestic Himalayan peaks, Everest Base Camp offers a unique sense of calm. Its tranquil atmosphere provides a perfect escape from the daily hustle of life, and our team recently had the opportunity to experience Everest up close.

In this setting, our CEO, Pukar C. Hamal, and VP of Global BD and Partnerships, Ruth Rafalovich, were joined by Josh Mullis, Head of Security at Productiv, and William Harmer, Operating Partner and CISO at Craft Ventures. They shared an unforgettable experience at 13,000 feet, which we’ve captured in this special two-part episode of the "In Security" podcast.

During a dinner at the BlackHat Event, Bil Harmer, Ruth Rafalovich, and Pukar Hamal conceptualized the idea of a visit to Nepal. Josh Mullis, who had expressed a desire to visit Nepal, was enthusiastically invited to join. We wanted to give Bil and Josh, our valued partner and customer, a unique chance to explore Nepal, check out our SecurityPal Operations Command Center in Kathmandu, and take a break from their routine. The visit included a close-up experience of Everest and a dive into local culture and traditions.

This adventure in Nepal is just a glimpse of the initiatives we are currently undertaking with our customers and partners.

About our guests:

William (Bil) Harmer is a seasoned IT professional with decades of experience in security. He has led initiatives for diverse organizations and held roles such as Chief Security Officer and Chief Information Security Officer at companies including GoodData and SAP. Currently, he is an operating partner at Craft Ventures, where he continues to leverage his extensive security experience..

Josh Mullis, (Head of Information Security at Productiv), hosted a session with our team, sharing insights on the Cyber Market and its evolution. A seasoned cybersecurity professional and former Director of Cyber Security at PwC, Josh brings extensive experience and knowledge to his role. He actively engages with trends, focusing on SaaS governance and the impact of AI on IT security.

Key Takeaways:

  • Why do cybersecurity professionals tend to embrace adventure in their personal lives? How can they find work-life balance in an intense field?
  • What can we learn about agility from tech startups and how they differ from large enterprise security programs?
  • How security reviews evolve from questionnaires to trust center models, and what this means for organizations moving forward.
  • How to maximize trust between vendors and customers by leading with empathy, embracing transparency, and focusing on what matters.

A New Era of Customer Assurance

While visiting the magnificent Everest Base Camp, Bil, Josh, Pukar, and Ruth shared an insightful discussion on how the security review process is shifting as business becomes more global and AI technology continues to rapidly evolve.

In this episode, the group highlighted the importance of evaluating risk and mitigation strategies and the level of transparency and trust a company can provide to build ongoing assurance with customers.

The conversation also discussed the challenges faced by businesses, particularly in the wake of regulations like GDPR. Bil shared a personal experience about how his previous company struggled with extensive security questionnaires, which ultimately hindered its success despite having a good product. The team also agreed that in the context of AI, the focus is shifting towards "responsible AI," ensuring ethical use, transparency, and accountability. They emphasized the need for businesses to adopt responsible AI practices to prevent misuse or harmful outcomes.

This discussion at Everest Base Camp illuminates the evolving nature of customer assurance in a global and technologically advanced world. The team's insights highlight essential strategies for building and maintaining trust with customers in this new era.

Transform Your Security Posture with SecurityPal Customer Assurance Suite (CAx)™. Trusted by the world’s most innovative enterprises, our (CAx)™ Suite, powered by cutting-edge AI, a 24/7 Security Operations Command Center (SOCC), and certified security experts, delivers an integrated approach to safeguard your enterprise’s data and streamline your security processes.

No items found.
No items found.
No items found.
No items found.
Nirvana Karkee
Content Writer

Closing the Talent Gap in Security by Tapping into the Veteran Community

Join David Cross, Oracle’s CISO, as he discusses how veterans, like himself, bring valuable qualities to cybersecurity while shedding light on closing the talent gap.

Build A Revenue Flywheel With Lightning-fast Deal Cycles

SecurityPal: Streamline Security Review for seamless sales. Human-in-the-loop approach ensures enterprise-grade speed, quality. Book a meeting to learn more.

Vendor Risk Assessment: Best Practices

Explore the best practices in vendor assessments to identify risks, keep your organization safe, and strengthen relationships.
Resources
eBooks & Whitepapers
Case Studies
Events & Webinars
FAQs
Blog
SecurityPal Council
Company
Vision & Values
Leadership Team
SOCC
Careers
Press
Newsroom
Connect
Contact us
Call us: +1 650-503-9216
Legal & Compliance
Terms of Use
Terms of Service
Privacy Policy
DPA
Security & Assurance