Making Compliance Suck Less with AJ Yawn
AJ Yawn is the co-founder and CEO at ByteChek, a startup that’s focused on making compliance suck less. He’s also a founding board member of the National Association of Black Compliance & Risk Management Professionals, and advisor at CISO MAG, and an advisor at team5. previously, AJ served as Principal for SOC-ISO-Healthcare at Coalfire. He was also a Captain in the U.S. Army and played basketball for Florida State University, reaching the Sweet 16 in 2011.
Join Corey and AJ as they discuss the origin story of ByteChek, why organizations need to stop thinking about compliance as a check-the-box exercise, what to look for in an auditor, why you need to keep asking the hard questions when evaluating auditors, why AJ believes that human auditors are going to become relics sooner or later, how it’s more or less impossible to do a comprehensive audit in the cloud by hand, why AWS Audit Manager isn’t usable for audits, why AJ decided to start a software company, and more.
About AJ
AJ Yawn is a seasoned cloud security professional that possesses over a decade of senior information security experience with extensive experience managing a wide range of cybersecurity compliance assessments (SOC 2, ISO 27001, HIPAA, etc.) for a variety of SaaS, IaaS, and PaaS providers.
AJ advises startups on cloud security and serves on the Board of Directors of the ISC2 Miami chapter as the Education Chair, he is also a Founding Board member of the National Association of Black Compliance and Risk Management professions, regularly speaks on information security podcasts, events, and he contributes blogs and articles to the information security community including publications such as CISOMag, InfosecMag, HackerNoon, and ISC2.
Before Bytechek, AJ served as a senior member of national cybersecurity professional services firm SOC-ISO-Healthcare compliance practice. AJ helped grow the practice from a 9 person team to over 100 team members serving clients all over the world. AJ also spent over five years on active duty in the United States Army, earning the rank of Captain.
AJ is relentlessly committed to learning and encouraging others around him to improve themselves. He leads by example and has earned several industry-recognized certifications, including the AWS Certified Solutions Architect-Professional, CISSP, AWS Certified Security Specialty, AWS Certified Solutions Architect-Associate, and PMP. AJ is also involved with the AWS training and certification department, volunteering with the AWS Certification Examination Subject Matter Expert program.
AJ graduated from Georgetown University with a Master of Science in Technology Management and from Florida State University with a Bachelor of Science in Social Science. While at Florida State, AJ played on the Florida State University Men's basketball team participating in back to back trips to the NCAA tournament playing under Coach Leonard Hamilton.
Links:
- ByteChek: https://www.bytechek.com/
- Blog post, Everything You Need to Know About SOC 2 Trust Service Criteria CC6.0 (Logical and Physical Access Controls): https://help.bytechek.com/en/articles/4567289-everything-you-need-to-know-about-soc-2-trust-service-criteria-cc6-0-logical-and-physical-access-controls
- LinkedIn: https://www.linkedin.com/in/ajyawn/
- Twitter: https://twitter.com/AjYawn
Join our newsletter
2021 Duckbill Group, LLC