Blog

VGS is a Forbes 2021 Next Billion-Dollar Startup – WOAH! We’re thrilled to be one of only 25 companies selected for this distinction by Forbes and TrueBridge Capital Partners.

At VGS, we say we’re committed to real security. But what does that actually mean? Let’s illustrate it by contrasting ‘real security’ with ‘security theater;’ otherwise known as ‘faking it’ or ‘checking the box’. It’s like leaving a spare key under your doormat — Yes, technically your home is locked, but a thief is likely to find your spare, and make off with your Playstation 5. Security theater is lazy, short-sighted, and high-risk.

VGS has teamed up with Cobalt, an innovative Pentest-as-a-Service (PtaaS) company, to help businesses improve their security posture and achieve compliance easier by protecting sensitive data.

If you are looking for SOC 2 compliance, you've likely heard some vendors claim they can magically make your business compliant in a ‘Fast and Furious’ fashion. But unfortunately, information security is not drag racing. If you move too fast, your efforts are likely to backfire.

A recent report, The Privacy Paradox: Securing Data To Build Customer Engagement, developed in collaboration between PYMNTS and Very Good Security, found that while 85% of consumers are conducting more of their lives digitally, 87% refuse to do business with a company if they have doubts about the way the company handles their personal data.

Unfortunately for devops teams everywhere, auditors are starting to catch onto how applications are made and deployed rapidly in the cloud. If you're like me, you can remember the first time you fully grasped how overwhelming an audit was about to be. I was handed a 250 row spreadsheet of controls and asked by our compliance team, "do we do these things and could you send screenshots for them?" To make things worse, our legal team preemptively hired a consultant to provide pointless commentary every step of the way. This event drives us to create Control. We want to automate the auditors out of the way, so you can get back to the cool stuff.

VGS has achieved PCI L1 Service Provider certification for the third time! Though most of you reading this blog will go through PCI DSS compliance for merchants, the process is similar enough that sharing a few lessons we have learned along the way should be helpful.

PCI DSS certification is a complex endeavor, whether it’s your first time or whether it has become an annual ritual at your company. However, many important aspects (and challenges) are common to all successful PCI assessments.

When something goes wrong and there isn’t a clear root cause, it can seem impossible to find, understand, and fix the problem. But now with VGS Observability, you can determine when, why, and how an atypical event happened.

There’s no doubt about it: Compliance and data security are expensive, time-consuming, and stressful. And there’s a reason for that.

Traditional methods don’t make it easy for companies to become compliant and protect user data. For crypto startups like Gem or leading marketing platforms like Fivestars, securing customer data security is mandatory – but it’s often cost-prohibitive and distracting.

We are excited to announce two new extraordinary additions to our C-suite team at VGS. Reena Choudhry has joined us as Chief Revenue Officer (CRO) along with Matt Amundson, our new Chief Marketing Officer (CMO).