Bayzat white box image
quote icon

“I did an audit before, and it was a mess, painful, and very long. It was a very pleasant surprise that everything was very smooth and very organized with AssuranceLab. Thanks to their AI-powered audits and multi-standard approach."

Ahmed Abdelrahman
Ahmed Abdelrahman
Chief Technology Officer (CTO)
CASE STUDY
Bayzat white box image

AI-powered multi-standard compliance

How AI-powered audits, driven by experienced auditors, allowed Bayzat to achieve SOC 2 and ISO 27001 concurrently.

INTRODUCTION TO BAYZAT
Bayzat is an all-in-one app for all your HR, payroll, and employee benefit needs. Its mission is to empower companies to create remarkable workplaces by supercharging its people, processes, and payments.

Bayzat’s all-in-one, localized SaaS platform streamlines HR operations, automates payroll, simplifies expense management, and gives employees mobile-first access to benefits and workplace tools. The company continues to evolve its product offering, layering AI across key workflows to unlock real-time insights and operational efficiency.

“It's a two-step value proposition of making sure companies can provide world-class employee experiences to the employees, whilst providing a fantastic employee experience.” Brain Habibi, Chief Marketing Officer & Head of Customer Success at Bayzat

REMAINING AHEAD OF THE CURVE

Working with sensitive employer and employee data meant Bayzat already had a high baseline security and privacy posture. In order to further prove trust to current and prospective customers, Bayzat started to look into different compliance standards. Having a compliant app would not only show that they are secure, but also a company that takes security seriously.


“We wanted to follow the best practice and find ways to improve our security from where we are. There are a lot of clients and prospects seeking information and confidence in our security, and this will make the process shorter and easier for them to have trust in our platform, product, and the company behind that,” shared Ahmed Abdelrahman, Chief Technology Officer (CTO) at Bayzat.


With this in mind, the team at Bayzat decided to complete both SOC 2 and ISO 27001. The bar was set high internally, and the team set out to achieve both standards as soon as possible.

FINDING THE RIGHT AUDIT PARTNER

With the frameworks decided on, Bayzat set out to look for an audit firm that could complete both audits. Having been introduced to audit firms from the compliance automation platform, Drata, and asking around their network, Bayzat was introduced to AssuranceLab, which stood out as the preferred auditor. 

“What stood out for AssuranceLab was their use of AI that really streamlined the process. It’s very well structured and organised, and we like that. We also liked the monthly continuous model, where we continuously have an auditor so we can easily renew every year, and we don't have this as an event but rather as a continuous process of compliance,” said Ahmed

AI-POWERED MULTI-STANDARD COMPLIANCE

What might sound like a dream happened to be a reality for Bayzat. Through AssuranceLab’s AI-powered multi-standard approach to compliance, they were able to complete their SOC 2 Type 1 & 2 and ISO 27001 certification concurrently. “It worked amazingly. Both ISO 27001 and SOC 2 went very smoothly,” said Ahmed.

Initial AI review of their SOC 2 controls showed a 56% pass rate, which increased to 88% on the second iteration. Having the AI review scan controls first allowed Bayzat to understand exactly where they stood and what needed their attention. It also helped the AssuranceLab team direct their focus and really understand the client's needs.

“It was phenomenal. When you see that you already have 80% of your controls passed, it speeds up the process a lot and gives you fast feedback on the areas you need to focus on. Looking into the remaining area was easier for sure.” 

“I knew that there was a strong team behind the AI tool and assurance that they would also review the findings,” said Ahmed.

“It was a pleasure working with Bayzat. They were fast, collaborative, and a well-prepared team. They were able to take their SOC 2 Type I from an initial AI score of 56% to 88% after review, and have now completed their Type 2 audit using the same AI audit technology. Multi-purpose audits can be done,” Vlora Ramadani, Senior Consultant at AssuranceLab

The clear, straightforward requests from the AssuranceLab meant uploading the remaining evidence and completing the final controls was “easy for us to understand, for example, if you missed adding something, it asked you to provide this evidence. It was very straightforward. We knew what we needed to do and we did it,” shared Ahmed

This modern approach to auditing was a delight to the Bayzat team, who had gone through audits before, which were a huge mess, painful, and long. The AI-powered audits and multi-standard compliance meant that Bayzat not only achieved compliance but also felt confident moving into the next stage of compliance with AssuranceLab.

LEVELLING UP THEIR COMPLIANCE STAGE

Having completed SOC 2 Type 1&2 and ISO 27001 certification, Bayzat has its sights set on completing HIPAA, PCI-DSS, and other industry-specific compliance standards. This will position them to continue to grow globally and improve human resources for employers and employees. 

If you would like to experience the AssuranceLab difference yourself, contact our team: info@assurancelab.com.au 
alab-soc2-image
GET IN CONTACT

Get started your way

We’re ready when you are
If you’re ready for a no-obligation discussion on your compliance needs and goals, our friendly team will be happy to take your call.
CONTACT US BOOK A CALL