In a new episode of The Mid-Marketers podcast, Extu CMO Nichole Gunn and Social Media Specialist Adam Dilbeck sit down with Extu CIO Kelly Held for an in-depth conversation on SOC 2 compliance, data security, and why it matters for marketers.
The Highlights
Breaking Down SOC 2 Compliance
Kelly simplifies SOC 2, describing it as a standard that protects customer data through security, availability, and confidentiality measures. He underscores its significance beyond the technical:
“SOC 2 is all about customer data—keeping it secure, confidential, and available when you need it.”
He notes that third-party CPA audits ensure credibility, making SOC 2 a key differentiator in competitive markets.
The Value of Trust
Kelly reflects on SOC-2’s impact on sales, recalling how prospective clients increasingly require it as a prerequisite for partnership. “Without SOC 2, you may not even get a seat at the table,” he explains, stressing how compliance strengthens credibility and expands market opportunities.
Human Firewalls Matter
Kelly highlights the critical role people play in security, labeling employees as the “human firewall.” He notes how phishing tests and background checks help prevent breaches, explaining, “Security is layered—technology matters, but the bottom layer is always people.”
Vendor Security and Partnerships
Kelly emphasizes that security extends to vendor relationships. He explains that Extu thoroughly vets vendors by reviewing their SOC 2 reports and practices, asserting: “Vendor security isn’t a checkbox—it’s a shared responsibility. If they fail, it impacts us.”
AI and Emerging Threats
How is AI influencing cybersecurity? Kelly highlights concerns such as deepfakes and phishing scams. He shares how Extu has added AI-focused training to their security programs: “AI is both a tool and a threat. Educating our people is the best defense against evolving risks.”
What Can Marketers Do?
Kelly urges marketers to make security a priority when selecting vendors, stating: “A simple question—‘Are you SOC 2 compliant?’—can save your brand from massive headaches.” He encourages marketing teams to work closely with IT to ensure vendors meet security standards.
The Bottom Line
This episode goes beyond technical details, demonstrating how data security intersects with marketing, sales, and brand reputation. Kelly Held’s insights are a must-listen for any marketer navigating vendor selection, customer trust, and emerging security challenges.
Catch the full conversation with Kelly, Nichole, and Adam on The Mid-Marketers podcast.
