By: Scott Schwan and Matt Wells
Today we made two very exciting new product announcements. Both are a direct result of what we wish was available while we were responsible for preparing for major compliance audits for 10+ years together, most recently at Starbucks.
First, we announced the immediate availability of our new AuditX SaaS platform that is purpose-built for enterprises to simplify, automate and modernize compliance audit preparation, evidence collection and readiness.
For companies that want to get from point “A” (starting preparation for an IT audit) to point “B” (report issued by an independent audit firm) – there is no simpler, more automated, or faster way than having your team use AuditX. Our customers find that the process end-to-end is 3x faster, vastly simpler, with 360-degree visibility on internal progress AND auditor acceptance. Evidence is automatically mapped across all applicable controls within a standards framework and across standards (PCI, SOC 2, HIPAA, ISO 27001, NIST-CSF, etc.). AuditX is designed from the ground up for cloud-first companies operating in AWS, Azure, and all stages of hybrid IT environments. Onboarding takes minutes – not weeks or months. So, for anyone interested in automation, doing more with less, and efficiently operating remotely – we highly recommend you watch the 2-minute AuditX overview video and, if interested, request a demo.
Second, we announced the availability of our new Automated Evidence Collection Engine (AEC) on the AuditX platform, which is included in AuditX+. AEC automatically crawls and collects evidence directly from AWS and Azure cloud native infrastructure.
With the push of a button, technical evidence is automatically captured, retrieved, processed and formatted – including encryption of data at rest, encryption key management, and network segmentation and configuration – with results organized into a formatted .pdf report ready for auditors. This frees up scarce valuable engineering and devops resources to work on critical priorities versus spending time manually capturing screenshots for audit preparation. The Automated Evidence Collection architecture is extensible, scalable, and robust; through automation it is designed to enable security and compliance teams to match the speed and iterative nature of modern cloud development. Our goal is to automate as much of audit preparation and evidence collection as possible, and we believe that software API connections to cloud services and 3’rd party systems are the only way to scale and accelerate audit preparation in a cloud-first future. Be sure to watch the 2-minute AuditX+ video and, if interested, request a demo.
Lastly, we want to thank our entire team here at Shujinko. These new products pave the way to achieve our shared vision of being the worldwide leader in compliance and IT audit software by creating the best possible audit experience for our customers and their auditors
– Scott & Matt