Risk Management Show Transforming Compliance: The Rise of CCM in 2025 with Dale Hoak
7 snips
Feb 19, 2025 Dale Hoak, Senior Director of Information Security at RegScale, is an expert in continuous controls monitoring. He discusses insights from the 2025 State of Continuous Controls Monitoring report, focusing on how automation is reshaping compliance and risk management. Dale emphasizes overcoming challenges in outdated processes, enhancing collaboration, and the importance of real-time updates. He shares actionable strategies for integrating compliance efforts with emerging trends like compliance as code, making this a crucial listen for cyber security enthusiasts.
AI Snips
Chapters
Transcript
Episode notes
SOC 2 Time Reduction
- Dale Hoak reduced SOC 2 report generation time from 300-400 hours to 90 hours.
- Further optimization brought it down to 30 hours by automating evidence collection and streamlining processes.
Automating Security Baselining
- Automate security baselining and vulnerability reporting.
- Use APIs to trigger scans and updates upon new asset deployment.
Integrating CCM with Existing Technologies
- Integrate CCM with existing technologies like Wiz and JIRA.
- Automate workflows to update documentation and issue tracking in real time.