Things to assess
- As a b2b cloud saas platform what security certificates we need?
- Check the 10 RFPs shared by Nitham, get understanding of what else is needed apart from above?
- Now lets say we need n certificates?
- what are the most important one
- where we need what? -> these are all chapters
- cost
- efforts
- changes
- impact
- time
- process to get that certificate
- checklist
-------
A - Available options in the market for certs
B - Available options in the market for frameworks
C - What certs and frameworks we need
D - Third party integrations - what certs and frameworks we expect from them (Like workday, posthog...)
E - Cert and Frameworks selections from vendors
F - Certification Cost w Certification Vendors
G - Infra costs changes due to cert related changes
I - Project Plan
J - Risk Mitigation
E:
The cert what vendor has that needs to fit with the US market needs
Time of completion (end to end)
Manually / Genai use?
Cost in the initial year
renewal Costs
Software ? For tracking evidences ?
What will they give to provide the customers
Vendor Costs (needs to be ~8k usd)
Vendor's other projects (soc2)
Vendor needs to be accepted by us market
Dell (they use genai -check this too)
Shortlisting a Vendor
speed and timelines
No Comments