Building a Security Program Through IPO

After COVID layoffs eliminated the security team, the organization had zero dedicated security staff while preparing for a public market debut. The platform managed 35,000+ rental units across 100+ AWS accounts with no formal compliance program in place.

We inherited and rebuilt the entire information security function, building compliance programs across PCI-DSS, SOX, and ISO 27001/27002 simultaneously while managing 100+ AWS accounts and developing automated fraud prevention systems.

All three compliance frameworks achieved. SPAC IPO completed successfully. Automated fraud prevention blocked account takeover and ACH fraud in real-time. Program continued operating post-IPO with no gaps.