1. 32
  1. 1

    We have various certifications (PCI, HIPAA/HITECH, FedRAMP, etc), but all too often these are box-ticking exercises with no real security value – just ask SolarWinds.

    You have some certifications that are a bit more intensive like SOC2 Type 2. You need to actually play out your processes and evidence other a long period that you’re following them.