Case Study

How a CISO Secures BYOD Contractors While Meeting Strict Compliance Requirements

My name is William Worthington. I’m the co founder and CISO for Grizzly Information Security Solutions. When I stepped into the role of CISO for this client, I needed to assess their footprint. What was the risks within their endpoint environment? And because they were leveraging a lot of part time staff that used BYOD, Venn was the solution that bubbled up to the surface To maintain FIMRA or SOC two compliance, Venn was critical. Or we would have had to deploy all company devices. From the compliance aspect, Venn checks all the boxes. As a CISO operating with clients that work a heavily regulated space then helps me sleep a little bit better at night. I know that I have the visibility to those endpoints and I have a protected bubble that allows my staff to work safely and preserve the protection of our clients’ data. Venn has allowed us to again speed up deployment, reduce cost, and ensure that the security controls that the frameworks require are in place and they’re easily demonstrated. If you’re a CISO or an IT professional and you have contractors within your workforce that are leveraging BYOD, You need to pick Venn. It will secure the environment and give you the visibility that you need.

Case Study: Grizzly Information Security Solutions

Learn How a CISO Achieved Visibility, Compliance, and Cost Efficiency on BYOD Laptops with Venn

Company Overview

Grizzly Information Security Solutions is a cybersecurity consulting firm led by Co-Founder and CISO William Worthington. The firm supports clients operating in highly regulated industries, where protecting sensitive data and maintaining compliance with frameworks like SOC 2 and FINRA is critical.

In one engagement, Worthington stepped in as CISO for a client with a distributed workforce heavily reliant on part-time staff and contractors using their own personal devices (BYOD). The organization needed to quickly assess risk exposure and implement a scalable, compliant security model.

Business Challenges

Limited Visibility into Contractor Devices

With a large portion of the workforce operating on personal devices, the organization lacked visibility into endpoint activity. This created significant risk around data exposure, monitoring, and control enforcement.

Compliance Requirements in a BYOD Environment

Operating under strict regulatory frameworks like SOC 2 and FINRA meant the organization needed to demonstrate strong controls over data access and endpoint security. Traditional BYOD environments made this difficult without intrusive or complex solutions.

High Cost of Traditional Device Deployment

Without a viable BYOD security solution, the alternative would have been issuing company-managed devices to all contractors, introducing high costs, logistical overhead, and slower onboarding.

Why Venn

To address these challenges, Worthington implemented Venn as the foundation for securing the organization’s contractor workforce.

Key decision factors included:

Secure BYOD Enablement: Venn allowed contractors to safely use personal devices while isolating company data within a protected environment.
Built-In Compliance Controls: The platform aligned with SOC 2 and FINRA requirements, making it easier to meet and demonstrate compliance.
Endpoint Visibility: Venn provided the necessary visibility into user activity and endpoint behavior without compromising user privacy.
Rapid Deployment: The solution enabled quick rollout across a distributed, part-time workforce without the need for hardware provisioning.

Business Value Delivered

1. Enhanced Security & Visibility

Venn created a secure enclave around company data, giving the CISO confidence that sensitive information remained protected, even on unmanaged personal devices. At the same time, it delivered the visibility needed to monitor and manage endpoint risk effectively.

2. Simplified Compliance

With Venn in place, the organization could confidently meet SOC 2 and FINRA requirements. Security controls were not only implemented but also easily demonstrable, reducing audit complexity and risk.

3. Reduced Infrastructure Costs

By eliminating the need to purchase and distribute company devices to contractors, the organization significantly lowered capital and operational expenses.

4. Faster Deployment & Scalability

Venn enabled rapid onboarding of contractors, allowing them to securely access company systems within hours. This made it easy to scale the workforce without traditional IT bottlenecks.

5. Greater Peace of Mind for Security Leadership

With strong controls, visibility, and compliance in place, leadership gained confidence in their security posture. As Worthington noted, the solution helps him “sleep better at night.”

Results

Achieved full visibility into contractor endpoints operating in a BYOD model
Strengthened compliance with SOC 2 and FINRA requirements
Eliminated the need for widespread company-issued devices
Accelerated onboarding and deployment timelines
Reduced overall security and infrastructure costs

Customer Perspective

“As a CISO operating in a heavily regulated space, Venn helps me sleep a little better at night. I know I have the visibility into those endpoints, and I have a protected bubble that allows my staff to work safely while preserving the protection of our clients’ data.”

— William Worthington, Co-Founder & CISO, Grizzly Information Security Solutions

Conclusion

For organizations relying on contractors and BYOD, traditional security models often force a tradeoff between flexibility and control. In this case, Venn eliminated that compromise.

By implementing Blue Border™, the organization established a secure, compliant environment that supports a modern, distributed workforce; without the cost and complexity of issuing managed devices. Contractors can work from their own devices, while security teams maintain the visibility and control required in regulated industries.

The result is a scalable, cost-effective approach to workforce security—one that enables growth without increasing risk.

If you want to see Venn in action, book a demo here.