Rudy M.

Commented on Has Anyone Successfully Replaced GitHub Branch Pro...·Posted inGRC

Thanks Eric - yes, that's the middle ground we're considering ATM if I can't find a different way enforce the review validation step. thanks

Commented on Has Anyone Successfully Replaced GitHub Branch Pro...·Posted inGRC

Rudy M.

ATM, it seems to be a friction point from my EM's. Hence why we're looking to make it more effective to our needs.

Posted in GRC·

Rudy M.

Has Anyone Successfully Replaced GitHub Branch Protection to Improve CICD Without SOC2 Issues?

Hi, Curious ... has anyone here successfully dropped github branch protection enforcement in favour of something else (eg. rulesets or similar) to unlock velocity and remove friction in your CICD without introducing too much auditor (SOC2) headaches/overhead/admin to factor in? If so, would you be open to sharing some thought topics for me to consider, before I head down this path soon, please? 🙏 Looking for some inspiration & lessons learnt if possible, please.

6Comments

Commented on Introducing Vanta's AI Agent: Automated Trust Cent...·Posted inProduct Updates

Rudy M.

same re request access. maybe it will be approved sometime today so we can view the demo.

Commented on SOC 2 Policy Approvals Now Available Directly in S...·Posted inProduct Updates

Rudy M.

Nice, thanks. I presume this auto kicks in on the next notification cadence, correct? (ie. I have mine notifying once a week)

Commented on Introducing Vanta Outbound Webhooks: Real-Time Eve...·Posted inProduct Updates

Rudy M.

sounds good, thank you. Can you add Integration add/remove too, to the webhook event wishlist. Thank you

Commented on Introducing Vanta Outbound Webhooks: Real-Time Eve...·Posted inProduct Updates

Rudy M.

tried to submit feedback specific to webhooks , but that option was not yet pre-populated in the form, so I'll leave feedback here instead for y'all. Would be neat if webhooks could be used to support the following use cases :

vendor DELETE
SLA passed due per test control. (tests that have passed their SLA window period to be resolved within)

use case :

to push those webhook events into dedicated slack channels for awareness to action.

Are these things currently being explored ATM at all?

Commented on Watch On Demand: Vanta Delivers Webinar and How to...·Posted inCommunity Events

Rudy M.

Thanks for sharing the on-demand link. Much appreciated as I was unable to join the session live.

Commented on Introducing Section Organization in Third Party Ri...·Posted inProduct Updates

Rudy M.

Thanks. So something in between add-ons & add-ons, correct? 🤔

Commented on Introducing Section Organization in Third Party Ri...·Posted inProduct Updates

Rudy M.

nice. Which Tier does this apply to? All tiers or specific ones only?

Rudy M.

Rudy M.

Has Anyone Successfully Replaced GitHub Branch Protection to Improve CICD Without SOC2 Issues?

Awards & Badges

About