Highspot Builds Continuous Compliance Program with Hyperproof
Seattle, WA, USA
- ISO 27001
- SOC 2 Type 2
- Compliance Operations Module
- Vendor Management Module
Highspot is the sales enablement platform that increases the performance of sales teams by bridging the gap between strategy and execution. The platform brings together content management, guided selling, onboarding, training, coaching and buyer engagement together in a single, unified solution that gives revenue leaders everything they need to drive scalable, predictable revenue growth.
Having seen a huge amount of success and hypergrowth, Highspot saw a need to establish a strong compliance program that could keep up with the pace of growth. Highspot wanted a solution that would allow the compliance team to move away from relying on technology like spreadsheets to manage their controls. To fully understand what controls are in place and how they're operating over time, Highspot needed software that serves as a single repository of controls and provides better visibility.
On top of this, Highspot was looking for a platform that could support the maintenance of two compliance frameworks (ISO 27001 and SOC 2 Type 2) annually. To prepare for audits, Senior Compliance Manager Tony Dell’Ario wanted a software solution that would ensure that the proper evidence was collected for each accompanying control on a continuous basis.
Senior Compliance Manager at Highspot
Since implementing Hyperproof, Highspot has not only streamlined its compliance and controls management work, but also simplified their vendor risk management process. With the help of Hyperproof, Highspot has:
Streamlined the audit process for ISO 27001 and SOC 2 Type 2
Scaled its ability to manage controls (they’re managing ~300 controls in Hyperproof)
Improved its vendor risk management process (they review around 150 vendor questionnaires per year)
Senior Compliance Manager at Highspot
Intuitiveness of platform
Before moving forward with Hyperproof, Highspot reviewed a number of other GRC tools. Dell’Ario found Hyperproof to be the most intuitive and easy-to-use platform. This was key for productivity and for ensuring that business stakeholders outside the compliance function would utilize the software to complete their tasks. With Hyperproof, Highspot employees across the company can easily provide evidence for vital controls.
Hyperproof allowed Dell’Ario to automate evidence collection for many types of controls. This has freed up time to focus on high-impact tasks without having to constantly track down evidence.
To ensure a high level of preparedness for audits, Highspot wanted a centralized place for evidence collection and control management. By implementing a continuous compliance program with the help of Hyperproof, Highspot now has a real-time, clear understanding of the state of evidence and the effectiveness of controls. This enables Highspot to head into audits (internal and external) with confidence.
Clear and meaningful reporting to leadership team
Highspot’s compliance team uses Hyperproof to report high-impact findings to upper management. At quarterly business reviews, Dell’Ario is able to clearly explain the current state of Highspot’s compliance posture with Hyperproof’s easy-to-read and comprehensive analytics dashboards.
Improved workflows and task management with integrations
In order for a continuous compliance program to be truly successful, stakeholders across business functions need to be aligned and do their part to support the effort. To drive accountability for compliance across the organization, Highspot utilizes various app integrations with Hyperproof. The compliance team has found that integrating Hyperproof with Google Drive, Jira, and Datadog has helped to streamline workflows and task management for stakeholders both in and outside of the compliance function.
Amplified compliance support
Compliance professionals have a lot on their plates and oftentimes don’t have time to dedicate to learning new software platforms or features. Hyperproof’s highly communicative customer success team enables Highspot’s compliance team to efficiently learn about and master new platform features.
“I'm the primary person responsible for compliance at Highspot and I communicate with people at Hyperproof all the time,” says Dell’Ario. “Because of the communication, I feel like the people I work with at Hyperproof are an extension of my compliance team.”