Highspot

Customer Story

Highspot Builds Continuous Compliance Program with Hyperproof

Company

Highspot

Location

Seattle, WA, USA

Industry

Computer Software

Compliance Frameworks

  • ISO 27001
  • SOC 2 Type 2

Products Used

  • Compliance Operations Module
  • Vendor Management Module

Overview

Highspot is the sales enablement platform that increases the performance of sales teams by bridging the gap between strategy and execution. The platform brings together content management, guided selling, onboarding, training, coaching and buyer engagement together in a single, unified solution that gives revenue leaders everything they need to drive scalable, predictable revenue growth.

The Challenge

Having seen a huge amount of success and hypergrowth, Highspot saw a need to establish a strong compliance program that could keep up with the pace of growth. Highspot wanted a solution that would allow the compliance team to move away from relying on technology like spreadsheets to manage their controls. To fully understand what controls are in place and how they're operating over time, Highspot needed software that serves as a single repository of controls and provides better visibility.

On top of this, Highspot was looking for a platform that could support the maintenance of two compliance frameworks (ISO 27001 and SOC 2 Type 2) annually. To prepare for audits, Senior Compliance Manager Tony Dell’Ario wanted a software solution that would ensure that the proper evidence was collected for each accompanying control on a continuous basis.

Quote Orange
We were managing two separate compliance programs out of hierarchical folders, spreadsheets, and Google Drive. I wanted to get us to a place where we were proactively preparing for audits. If we could demonstrate that we were continuously compliant throughout the year, we’d be ready for an audit any time.

Tony Dell’Ario
Senior Compliance Manager at Highspot

Results

Since implementing Hyperproof, Highspot has not only streamlined its compliance and controls management work, but also simplified their vendor risk management process. With the help of Hyperproof, Highspot has:

Streamline Audit

Streamlined the audit process for ISO 27001 and SOC 2 Type 2

Managed Controls

Scaled its ability to manage controls (they’re managing ~300 controls in Hyperproof)

Vendor Risk Management

Improved its vendor risk management process (they review around 150 vendor questionnaires per year)

Quote Orange
Hyperproof has made it much easier for me to conduct security reviews of new vendors. Some weeks I’ll have five vendor questionnaires to review – Hyperproof makes this volume achievable. With Hyperproof I can record who the business owner is, who the vendor contact is, what the questionnaire is for, and when it was last reviewed. When I need to bring in leadership to do a deeper review, I know that this all can be viewed in Hyperproof.

Tony Dell’Ario
Senior Compliance Manager at Highspot

Why Hyperproof

Intuitiveness of platform

Before moving forward with Hyperproof, Highspot reviewed a number of other GRC tools. Dell’Ario found Hyperproof to be the most intuitive and easy-to-use platform. This was key for productivity and for ensuring that business stakeholders outside the compliance function would utilize the software to complete their tasks. With Hyperproof, Highspot employees across the company can easily provide evidence for vital controls.

Automation

Hyperproof allowed Dell’Ario to automate evidence collection for many types of controls. This has freed up time to focus on high-impact tasks without having to constantly track down evidence.

Audit support

To ensure a high level of preparedness for audits, Highspot wanted a centralized place for evidence collection and control management. By implementing a continuous compliance program with the help of Hyperproof, Highspot now has a real-time, clear understanding of the state of evidence and the effectiveness of controls. This enables Highspot to head into audits (internal and external) with confidence.

Additional Results

Clear and meaningful reporting to leadership team

Highspot’s compliance team uses Hyperproof to report high-impact findings to upper management. At quarterly business reviews, Dell’Ario is able to clearly explain the current state of Highspot’s compliance posture with Hyperproof’s easy-to-read and comprehensive analytics dashboards.

Improved workflows and task management with integrations

In order for a continuous compliance program to be truly successful, stakeholders across business functions need to be aligned and do their part to support the effort. To drive accountability for compliance across the organization, Highspot utilizes various app integrations with Hyperproof. The compliance team has found that integrating Hyperproof with Google Drive, Jira, and Datadog has helped to streamline workflows and task management for stakeholders both in and outside of the compliance function.

Amplified compliance support

Compliance professionals have a lot on their plates and oftentimes don’t have time to dedicate to learning new software platforms or features. Hyperproof’s highly communicative customer success team enables Highspot’s compliance team to efficiently learn about and master new platform features.

“I'm the primary person responsible for compliance at Highspot and I communicate with people at Hyperproof all the time,” says Dell’Ario. “Because of the communication, I feel like the people I work with at Hyperproof are an extension of my compliance team.”

Download Case Study

Hyperproof App on Screen

Sign Up for a Personalized Demo

Let’s go