Intelligent Integrations Power Compliance Automation

February 5, 2021

Integrations are critically important for compliance automation. However, not all integrations are created equal. Learn about how different integration strategies result in different outcomes for compliance automation, and what to look for with integrations.

Jeff Lesser

Compliance automation improvements and IaaS integrations

December 15, 2020

Today we’re introducing new automated issue detection and remediation functionality that makes Aptible Comply integrations even more intelligent so compliance managers can continuously monitor controls and remediate detected issues with simple, user-friendly workflows. Not to be overshadowed we are also adding cloud infrastructure integrations, starting with AWS, so companies building in the cloud can leverage powerful compliance automations to manage IaaS compliance.

Jeff Lesser

Building Aptible’s Design System

December 11, 2020

Aptible created a design system, Arrow Design System, to be able to create high-quality and consistent experiences for our users. It's owned and maintained by the UX Engineering team which allows us to invest in the user experience independently of product feature requests. Learn more about how Arrow DS allows us to make our software easier to use and give users more reason to trust our products.

Zach Kuzmic

Simplify Manual Evidence Collection

November 20, 2020

Comply prioritizes automating evidence collection so compliance teams can focus on more important problems, however because not all evidence collection can be automated (yet) some evidence still requires old fashioned manual collection. Learn about how Aptible Comply makes compliance manual evidence collection easier through automating the processes and providing integrations for notifications and evidence uploads.

Jeff Lesser

2020 GRC Benchmark Report: A month in the life of a GRC professional

October 9, 2020

User access reviews, pen tests, compliance audits, security reviews…the amount of work that security and compliance teams have to manage on a regular basis is shocking. Yet, there are actually very few sources of information on just how much time security and compliance professionals spend on different tasks. Until now.

Aptible recently surveyed over 100 GRC professionals to learn what their top challenges are, and what capabilities they look for in a GRC tool. Check out a quick summary in this blog post, and link to the full report.

Rebecca Mendenhall

Recreating redux-toolkit’s createSlice

October 7, 2020

In this post, we want to demystify createSlice by building our own stripped down version of it for new engineers to use as a reference guide when learning redux.

Eric Bower

“Moving Left” and Moving Forward in GRC

September 15, 2020

Steven Nguyen, Director of GRC at Segment, on the sea change brewing in the compliance industry around security sales enablement and automation tooling.

Compliance professionals are struggling to manage compliance and enable sales to close deals. Pioneers like Steven Nguyen, Director of GRC at customer data platform Segment, are coming up with creative solutions to ease and expedite compliance requests. Nguyen is pioneering a new way of thinking about GRC—and how compliance must adapt and automate to meet the demands of internal stakeholders and customer needs.

Jeff Lesser

Securing websites via HTTP Security Headers

September 9, 2020

We recently rolled out updated HTTP security headers for Comply. Following best practices with HTTP security headers can be a quick way to add an additional layer of security to a website, so we wanted to share our work here in hopes that others might find it helpful.

David Wen

What is a UX Engineer at Aptible?

September 2, 2020

UX Engineers at Aptible play an important role in the product development process by blending UX knowledge with technical skills to fill the gap between design and engineering.

Tom Cunningham

Build Customer Trust with HITRUST

August 11, 2020

Comply now supports the HITRUST framework, making it easier for healthcare companies to gain certification of their data security practices and build customer trust through compliance. We have also partnered with NCC Group to create our controls making assessments through them faster and more affordable.

Chris Gomes