Scytale

Hosted by Scytale

Technology

Website RSS feed

Episodes

Latest episode

Jul 2025

Language

About the show

The podcast that breaks down security compliance into bite-size pieces, empowering compliance leaders everywhere to navigate this beast. Listen in as we unravel together the complexities of frameworks like SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR and more, and dive into the era of compliance automation.

Listen to episodes

27 recent

July 3, 202528 min

Episode 27- PCI DSS & DMARC: The What, Who, Why and How

In this episode of Comply or Die, Robyn Ferreira and Ronan Grobler, Senior GRC Managers at Scytale, dive into the critical link between PCI DSS and DMARC and why it matters now more than ever.With PCI DSS v4.0 now requiring DMARC, protecting your customers’ payment data and your email domains is no longer optional, especially if you're in financial services or handling cardholder data.Falling behind could mean increased fraud risks, failed audits, and serious fines. But implementing these controls doesn’t have to be painful.Join Robyn and Ronan as they break down:Why PCI DSS & DMARC are critical for financial securityHow DMARC prevents phishing and email fraudSocial engineering threats (and how to actually stop them)Best practices for smooth implementation💌Get in Touch:Robyn Ferreira – / robyn-ferreira-29855b233 Ronan Grobler – / ronan-grobler-0b6391203 Podcast Manager: / shari-mayers-961860b2 Website: https://scytale.ai/scytale-podcasts/📱Join us on Social Media:⭐ LinkedIn: / scytale-ai ⭐ Twitter: https://x.com/scytale_ai⭐ Facebook: / scytalecomplianceautomation

April 3, 20251 hr 0 min

Episode 26 - Another Day, Another Compliance Requirement (Thanks, AI)

In Part 2 of Kyle’s chat with Nick and Steve, they dive into how compliance has shifted over the years with cloud technologies and AI coming into play. Similar to the early days of the internet - exciting, new, and unregulated - until things started to go wrong, and suddenly there was a need for rules to catch up with the fast pace of change. From the challenges of businesses migrating data to the cloud, to the growing importance of AI frameworks like ISO 42001 and the EU AI Act, they cover it all. Make sure you’re keeping up!🔍 Here’s What You’ll Learn:✅The real challenges behind cloud data migration and how to keep costs in check.✅How AI frameworks like ISO 42001 and the EU AI Act are shaking up compliance and vendor relationships.✅ Why Zero Trust architecture and human factors are now at the heart of strong security compliance.💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guests: Nick (https://www.linkedin.com/in/nickbgibson/) & Steve (https://www.linkedin.com/in/steve-huffman-43a053193/) Podcast Manager: https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media:⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/scytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation

February 26, 202540 min

Episode 25 - Sales Told Us We Needed Compliance Like Yesterday - Now What?

We know the story all too well - sales tells you that your next customer won’t sign unless you have compliance in place, like yesterday. Your team’s under pressure to meet urgent customer requirements, but you have no clue where to start.In this episode, Kyle, Steve, and Nick break down what to expect when your compliance journey is driven by sales pressure. They’ll walk you through how to set yourself up for success without overpromising, under-delivering, or compromising your sanity. Whether it’s SOC 2, ISO, or some other framework you’ve never heard of before, tune in for some honest, practical advice on making compliance work for your business (without losing your mind in the process). 🔍 Here’s What You’ll Learn:✅ How to balance sales urgency with proper compliance✅ Why “compliance just for the audit” is a risky strategy✅ How to avoid over-documentation and make smart, sustainable decisions upfront💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guests: Nick (https://www.linkedin.com/in/nickbgibson/) & Steve (https://www.linkedin.com/in/steve-huffman-43a053193/) Podcast Manager:https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media:⭐ LinkedIn:https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter:https://x.com/scytale_ai ⭐ Facebook:https://www.facebook.com/Scytalecomplianceautomation

January 29, 202537 min

Episode 24 - A Gen Z's Take on Making SOC 2 Suck Less

SOC 2 compliance doesn’t exactly scream “fun,” but Charissa Kim, a Security Technical Program Manager at Semgrep and founder of Cyber Youth Tech, brings a refreshing perspective on making it engaging, relatable, and dare we say… fun? From giving out SOC 2 socks to creating TikTok-style security training videos, she’s redefining how startups approach security. Shaped by interviews with over 50 engineers and her hands-on experience at a fast-growing startup, Charissa shares her thoughts on: ✅ Where SOC 2 feels outdated (and what today’s startups really need) ✅ Creative hacks to make compliance a little less boring ✅ Communicating security in a way that resonates with your Gen Z talent 💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guest: https://www.linkedin.com/in/charissakim/ Podcast Manager: https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media: ⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/scytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation

December 4, 202417 min

Episode 23 - What's the Deal With DORA?!

In this episode of Comply or Die, Kyle sits down with Tracy Boyes, Scytale’s DPO and Data Protection & Privacy Attorney, to break down what DORA is and why it’s such a big deal right now. If you’re in the financial sector, or a critical ICT service provider and a bank relies on your tool as a SaaS company, this episode is packed with insights for you. Tracy’s advice is practical, clear, and perfect for anyone trying to get their head around DORA. 🔍 Here’s What You’ll Learn: ✅ Why everyone in the financial sector is buzzing about DORA. ✅ A super simple breakdown of the regulation (no legal jargon, we promise!) ✅What the January 2025 compliance deadline means for your company - and what’s at stake if you miss it. 💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guest: https://www.linkedin.com/in/tracy-b-743009100 Podcast Manager: https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media: ⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/scytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation

November 12, 202451 min

Episode 22 - Where DevOps Meets Compliance

In this episode of Comply or Die, DevOps and compliance expert Yosef ‘Joe’ Harrow dives into where DevOps meets compliance. From his journey as a Linux enthusiast to becoming a DevSecOps engineer overseeing SOC 2 and PCI-DSS certifications, Joe brings a unique perspective on how DevOps practices intersect with and even enhance compliance efforts. Joe shares how DevOps practices naturally reinforce compliance goals, with insights on making security a seamless part of development processes. Tune in to hear how DevOps can make compliance part of every team’s DNA! 🔍 Key Takeaways: ✅The challenges DevOps teams face when compliance requirements are suddenly dropped on them ✅How core principles like the CIA Triad - Confidentiality, Integrity, and Availability - are essential to both fields ✅How tools like CI/CD and GitOps support compliance 💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guest: https://www.linkedin.com/in/yosefrow/ Podcast Manager: https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media: ⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/scytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation

October 2, 202431 min

Episode 21 - The Real Reasons AI Isn’t Taking Off in Your Startup

"Don’t use a chainsaw if you can’t swing an ax." That’s how Michael Greenberg, CEO & Founder of Third Brain Automation, sums up the challenges businesses face when trying to scale with AI. From paperwork-heavy processes to fully automated processes, Michael breaks down the five stages that set the foundation for successful AI deployment. Most businesses struggle to reach the level where AI can truly thrive due to outdated tools or compliance issues with vendors. Michael reminds us that fully AI-operated processes only work if your current processes are solid to begin with. Tune in! 🔍 Key Takeaways: ✅Solid Processes First: AI only works if your current processes are strong. ✅Five Stages to AI: Michael shares the steps to go from totally manual to totally automated. ✅Vendor Compliance Matters: scaling with AI fails without compliant vendors. 💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guest: https://www.linkedin.com/in/gentoftech/ Podcast Manager: https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media: ⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/scytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation

August 27, 202415 min

Episode 20 - For Every Startup's Compliance Challenge, There's Greg with Answers

In this episode, Kyle Morris sits down with Greg, a biochemist-academic turned Account Executive at Scytale, to dive into his unique path into sales and all things data security compliance. They explore the nuances of the compliance sales process, the common challenges Greg’s prospects face in compliance, and the regional differences in compliance frameworks. Greg shares his insights into educating prospects about the true value of compliance and also shares a glimpse into his daily routine and what it takes to succeed in this unique sales environment. 🔍 What You'll Learn: ✅The role of education in the compliance sales process ✅Misconceptions and timing challenges in compliance certifications ✅Navigating different compliance frameworks across regions ✅The daily grind of a Scytale Account Executive 💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guest: https://www.linkedin.com/in/gregorykotze/ Podcast Manager: https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media: ⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/scytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation

August 19, 2024Episode 1923 min

Episode 19 - Building and Using APIs with a Security-First Mindset

In this episode of Comply or Die, Kyle Morris, Senior Compliance Success Manager at Scytale, sits down with Kabir Mathur, CEO and Founder of Leen, to discuss the topic of API security. Kabir shares startup Leen’s journey and the importance of APIs in the cybersecurity space. Kabir talks about the need for security-first practices when building and using APIs, and highlights the value of a unified API for security data. 🔍 What You'll Learn: ✅Leen’s pivotal moments that shaped them into the business they are today ✅The role APIs play in enabling automation and data correlation in the security industry ✅Security-first practices essential for building APIs to ensure data security and privacy ✅The benefits of a unified API for security data 💌Get in Touch: Host: https://www.linkedin.com/in/morribiscuit/ Guest: https://www.linkedin.com/in/mathurkabir/ Podcast Manager: https://www.linkedin.com/in/lauren-blanc/ Website: https://scytale.ai/scytale-podcasts/ 📱Join us on Social Media: ⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/scytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation

July 29, 20244 min

Episode 18 - CrowdStrike Doomsday: How & Why it Happened

Join Kyle Morris, Senior Compliance Success Manager at Scytale, as he gives a breakdown of the dramatic events surrounding CrowdStrike's recent security crisis. In this episode, Kyle breaks down the intricate details of what went wrong, why it happened, and what it means for the broader world of data security. Takeaways: ✅The key factors that led to the CrowdStrike incident ✅Insights into how similar incidents can be prevented ✅Lessons learned for businesses and compliance professionals 📱Join us on Social Media: ⭐ LinkedIn: https://www.linkedin.com/company/scytale-ai/ ⭐ Twitter: https://x.com/i/flow/login?redirect_after_login=%2Fscytale_ai ⭐ Facebook: https://www.facebook.com/Scytalecomplianceautomation