Why does Complade exist?

Organizations exist as they represent the most cost-effective method known for organizing resources to create value.

On October 13, 1994, Netscape Navigator was launched, allowing non-technical users to access the internet. Two years later, Compaq developed a business plan on how to utilize the internet through the browser, coining the term "Cloud". Cloud computing is when organizations use the browser and the internet to run their operations, like when using Outlook, Gmail, or QuickBooks Online.

Fast forward to 2024, over 5 billion people use the internet. Cloud computing is prevalent in more than 90% of the world's organizations. This means that 90% of organizations produce value for their stakeholders using tools connected to the internet, creating a dependency on Cloud providers like Microsoft for Outlook, Google for Gmail, and Intuit for QuickBooks Online. But these are not the only Cloud providers.

Cloud computing, or the use of internet and browser-enabled devices, encompasses various levels. For instance, an organization creating software for a doctor's office typically relies on cloud providers like Google Cloud, Microsoft Azure, or Amazon AWS for services and storage. In contrast, larger companies might opt to host these services on their own servers, managed by VMware with Windows as the operating system. Each segment of this supply chain presents unique risks that require effective management through controls, a process known as Cybersecurity Management. It's important to note that terms such as 'cyber', 'internet', 'IT', 'digital', and 'cloud' are often used interchangeably in this context.

For this economic system to function effectively, informed trust in the supply chain is essential. This is where impartial assurance providers play a crucial role, informing stakeholders about the status of an organization's information risks and controls. However, the assurance process often becomes complex and ineffective. Instances where schools, hospitals, financial systems, retailers, and others have their cloud resources held for ransom – reminiscent of old-age piracy – occur despite these organizations having assurance processes in place, such as ISO 27001 certification or SOC 2 attestations. Unfortunately, these can sometimes provide a false sense of assurance to stakeholders. Complade is an organization on a mission to rectify this issue.

Cybersecurity and data privacy standards are developed by the community to streamline processes, similar to the metric standard or Generally Accepted Accounting Principles (GAAP). When organizations utilize, implement, and get "certified" in standards like NIST CSF, ISO 27001, or CyberSecure Canada, yet still fail to protect their resources, the issue does not lie with the standard itself. Rather, it's due to a broken assurance process that leads to a false sense of assurance. This results in negative consequences such as complacency, apathy, and negligence among its stakeholders. Complade is an organization dedicated to resolving this challenge.

So, why does Complade exist?

 To help organizations' stakeholders obtain an informed sense of assurance that information risks and controls are balanced. We exist because the majority of the world's organizations, using the internet to create and capture value, now do so depending on their cloud provider(s), who in turn rely on their providers, and so on. It's a connected web of supply chains, based on data centres, interconnected by fibre optics, and managed by software. This process is too complex to manage through individual providers or using tools like Excel and Word templates. 

Complade objective is to provide organizations' stakeholders with an informed sense of assurance. We specialize in the assurance aspects of cybersecurity, covering a range of services, including cyber-related assessments, testing, certification, attestation, and audits. Through the innovation of efficient assurance processes and methods, we aim to build trust within the supply chains of our economies.

 We'd like to invite you to discover the efficiency of Complade's assurance and cybersecurity certification process for your organization. Contact us

While at it. Here is what Complade means:

Complade = Compliance + Lade