VanRein Compliance Podcast
Rob & Dawn Van Buskirk
0
This podcast covers compliance and data security topics such as SOC2, ISO27001, HIPAA, GDPR, CPRA, NYShield, Texas HB300, and HiTRUST. The hosts, Rob and Dawn Van Buskirk, share insights on reducing business risk and securing the future of your company. They also discuss family business and personal stories, making it more than just a business podcast.
Episoade
-
Why We Built VRC1 OS: The Operating System for Compliance 17.06.2026 15minSend us Fan Mail We’re launching VRC1 OS, our compliance operating system built to bring structure, clarity, and real visibility to programs that have become scattered across tools, email, and spreadsheets. We explain why compliance has to run like a business function, how AI can reduce friction without replacing judgment, and what growing teams should expect when they stop chasing audits and start operating compliance. • why compliance feels fragmented across policies, training, eviden...
-
Founder-Led Compliance for Founder-Led Companies 04.06.2026 15minSend us Fan Mail We talk about why founder-led and family-owned companies need to treat compliance as protection for trust, reputation, and long-term growth. We share the most common gaps we see as teams scale and how to build simple ownership so you stay audit ready without getting overwhelmed. • why founder-led compliance feels personal and why reputation matters • compliance as protection for clients, payroll, and the business foundation • how client questionnaires and ce...
-
Your GRC Platform is Fake. Here’s What Actually Builds Trust 06.05.2026 11minSend us Fan Mail The “trust center” trend is getting weird fast. If your security page is a glowing badge, a wall of green checks, or a portal that forces buyers into an access request black hole, we think you’re signaling the wrong thing and losing deals you should be winning. We break down why traditional GRC tooling often turns into compliance theater: lots of workflows and mapped controls, but very little proof when a customer asks for the last risk analysis, a HIPAA audit artifact, a SO...
-
AI Boom: Navigating the Compliance Minefield 29.04.2026 21minSend us Fan Mail AI is already inside your business, and the uncomfortable truth is you might not even know where. Copilot in Microsoft, Gemini in Google, bots layered on top of bots, and “quick tests” in personal accounts all create real compliance risk the moment sensitive data enters the mix. At the same time, regulation is tightening fast, which means the gap between how teams use AI and what auditors expect is getting more dangerous by the week. We walk through what’s changing globally ...
-
AI + HIPAA: What Actually Matters (And What Doesn’t) 15.04.2026 16minSend us Fan Mail AI is already inside your healthcare workflows, your vendors, your phones, and your inbox. The hard part is not getting access to the tools. The hard part is using AI without quietly leaking PHI and waking up to a HIPAA breach you never saw coming. We break down the question most teams ask the wrong way: “Is AI HIPAA compliant?” HIPAA wasn’t written for large language models, but the law still applies, and the responsibility still lands on you. We walk through how AI fits in...
-
Compliance Isn’t Enough Anymore—So We Built This 08.04.2026 17minSend us Fan Mail We launch new penetration testing and vulnerability scanning services and explain why passing audits still leaves hidden security risk. We lay out a practical testing cadence, how it maps to HIPAA, SOC 2, and ISO, and how proactive validation builds trust with clients before an attacker forces the lesson. • compliance versus security, why policies do not stop attacks • why 2026 attackers scan and exploit automatically • vulnerability scanning as continuous m...
-
How Family Businesses Build Legacy And Trust 01.04.2026 32minSend us Fan Mail Most people say they want a legacy. Then they run their business like it only needs to survive the next quarter. Rob and Dawn come back from the NAEO conference in San Antonio with a clear question for every owner: are you building something that lasts, or something that just pays? We talk about what it looks like when a company actually makes it to 50 years, using Mtelco’s anniversary as a real-world case study. That opens up the bigger conversation around family business, ...
-
May 2026 HIPAA Changes: What Every Organization Must Do Now 11.03.2026 18minSend us Fan Mail We break down the largest HIPAA Security Rule update in 15 years and explain what it demands from healthcare, SaaS, and telehealth teams. Clear requirements replace ambiguity with MFA everywhere, stronger encryption, real testing, faster recovery, and rapid partner notices. • why HIPAA must modernize for cloud, AI and telehealth • how ransomware pressure shapes stricter controls • asset and data inventory as the foundation • MFA as a universal, required control • encryption ...
-
Unlocking ISO Compliance with David Forman Founder of Mastermind Assurance 04.03.2026 45minSend us Fan Mail We sit down with ISO auditor David Foreman to demystify ISO 27001, compare it with SOC 2, and unpack what auditors actually look for. We cover real breaches, the limits of compliance tools, the rise of 27701 and 42001, and how to win leadership buy-in. • what an ISO certification body does and how audits work • ISO 27001 governance plus controls vs SOC 2 opinions • readiness and internal audit roles vs external certification • why breaches accelerate third-party assurance de...
-
From Human Oversight To ISO 42001 And NIST: Building A Safer AI Program 25.02.2026 24minSend us Fan Mail Thank You for Listening to the VRC Podcast! Visit us at VanRein Compliance You can Book a 15min Call with a Guide Follow us on LinkedIn Follow us on X Follow us on Facebook
-
The AI Governance Playbook with Bennie Cleveland 18.02.2026 32minSend us Fan Mail We sit down with auditor and risk leader Bennie Cleveland to unpack how to make AI defensible in the real world. We cover governance, healthcare and privacy frameworks, modern attack patterns, and the playbooks that separate confident teams from lucky ones. • defining AI ownership, approvals, data scope, monitoring and explainability • building an AI inventory and supplier risk register • mapping to NIST CSF, HIPAA, GDPR, SEC expectations • deepfakes and social engineering e...
-
AI: Beyond Policies and Governance with Dr. Camille Howard 11.02.2026 38minSend us Fan Mail Thank You for Listening to the VRC Podcast! Visit us at VanRein Compliance You can Book a 15min Call with a Guide Follow us on LinkedIn Follow us on X Follow us on Facebook
-
Tabletops, AI Governance And Real Resilience 04.02.2026 19minSend us Fan Mail We roll out two new services—tabletop exercises and AI and automation governance—and dig deep into why tabletop drills prove readiness, resilience, and audit defensibility. From foundational policy walk‑throughs to enterprise war rooms, we map maturity levels and show how to turn SOPs into real action. • what auditors expect from tabletop evidence • foundational awareness, roles and policy validation • ops drills that test detect, contain and recover • exec...
-
Winter Storm Tabletop: When Weather Becomes a Business Risk 28.01.2026 31minSend us Fan Mail We turn a deep freeze into a practical tabletop for households and businesses, building a clear plan for power, internet, people, and customers. From generators and Starlink to MFA bypass and recovery checks, we map decisions that turn chaos into continuity. • prioritizing power layers with generators and UPS • dual‑path internet and cellular failover testing • handling school closures and quiet zones at home • stocking food, water, heat, and plumbing protection • roles, thr...
-
Why Your Business Needs An AI Policy Before Chasing Certifications 21.01.2026 24minSend us Fan Mail We compare NIST AI RMF and ISO 42001, explain why AI audits matter, and share practical steps to build trust with customers, regulators, and insurers. We lay out a simple path: write policies, assess risk, and choose the right level of assurance. • everyday AI use cases and core risks • why audits reveal bias, privacy gaps, and weak training • EU AI Act context and US landscape • NIST AI RMF governance, map, measure, manage • ISO 42001 as a certifiable AI management system •...
-
From Restart to Rhythm: Building Compliance Readiness 14.01.2026 25minSend us Fan Mail We draw a hard line between frantic resets and a steady compliance rhythm that proves readiness when it counts. Clear ownership, small cadences, and current evidence cut drama, reduce risk, and build trust with auditors, partners, and customers. • defining readiness as proof not perfection • event-based scrambling versus behavior-based cadence • maturity signals auditors actually trust • named owners and deputies for continuity • weekly to annual review rhythms that stick • ...
-
What Our Clients Can Expect From VanRein Compliance in 2026 07.01.2026 14minSend us Fan Mail What Our Clients Can Expect From VanRein Compliance in 2026 Thank You for Listening to the VRC Podcast! Visit us at VanRein Compliance You can Book a 15min Call with a Guide Follow us on LinkedIn Follow us on X Follow us on Facebook
-
Compliance 2025 Review — And What’s Changing in 2026 10.12.2025 22minSend us Fan Mail Thank You for Listening to the VRC Podcast! Visit us at VanRein Compliance You can Book a 15min Call with a Guide Follow us on LinkedIn Follow us on X Follow us on Facebook
-
Compliance in Your Pocket: The Revolutionary VRC1 Platform 18.06.2025 24minSend us Fan Mail We unveil our groundbreaking VRC1 platform designed to revolutionize how businesses approach compliance. This single, centralized solution brings together all aspects of compliance management, from evidence collection and documentation to real-time communication with auditors. • VRC1 creates one central place for all compliance activities, eliminating the need for multiple platforms and endless email chains • Real-time chat functionality enables immediate communication with ...
-
Why AI Auditing Matters: NIST AI RMF vs ISO42001 30.04.2025 24minSend us Fan Mail Thank You for Listening to the VRC Podcast! Visit us at VanRein Compliance You can Book a 15min Call with a Guide Follow us on LinkedIn Follow us on X Follow us on Facebook
Popular în
Acest podcast apare și în topurile de podcasturi din aceste țări.