Lead Product Designer
June 2024 - Ongoing
Researcher - Melinda Molnár
Product Managers - Sumit Yadav
Development - Ashwini Chandrase
Security Architect - Shawn Mullen
In today’s security landscape, SOC 2 audits play a critical role in establishing trust and ensuring compliance—but for many organizations, the process remains frustratingly complex and time-consuming.
<aside> 💡
At IBM, internal surveys revealed that more than 40% of the security team’s time was consumed by audit-related tasks, time that could have been better spent driving innovation and proactively securing our products.
</aside>
To add insult to injury, internal auditors relied on outdated, decentralized tools for managing audits and collecting evidence, creating inefficiencies and friction across teams. This labor-intensive process cost IBM millions annually.
Our team planned to address this gap by creating an in-house audit management tool to simplify workflows and help teams complete their annual audits. This tool would eventually be externalized to customers, expanding our security offerings.
I led the design of the new audit management product from initial discovery and research to delivery and implementation
