Walk into the SOC2 walkthrough with the pack already assembled
Hand Carly the audit window and she'll pull access reviews from ServiceNow, the WAF config from Cloudflare, and assemble the evidence pack in SharePoint — gaps surfaced before the auditor sees them.
What Carly does
- 01 List access reviews from ServiceNow for the audit window
- 02 Export the current Cloudflare WAF configuration
- 03 Compute the WAF rule diff vs the prior quarter
- 04 Flag any access reviews closed without reviewer signature
- 05 Assemble the evidence pack in SharePoint under Audits / <cycle>
Audits prepared in hours, not weeks
Evidence is assembled straight from the systems of record. Gaps surface before the auditor sees them. The walkthrough becomes a quick review — not a scramble.
Email this to Carly to kick it off.
Hey Carly, SOC2 walkthrough is coming up and I need the Q1 evidence pack assembled. Pull every access review from ServiceNow that closed in the audit window, then export the current Cloudflare WAF configuration and diff it against last quarter so we can show the rule changes. Flag any access reviews that closed without a reviewer signature so I can chase them down before the auditor does. Drop everything into SharePoint under Audits / Q1 with sections for access reviews, WAF diff, and exceptions. Thanks!
More recipes for it & security teams
Pull Datadog, correlate with traffic, start a war room in #incidents.
Read →Find the deploy, identify the file, file the fix, ping the team channel.
Read →Provision Auth0 groups, share Bitwarden collections, add to the right Slack channels.
Read →Ready to automate your busywork?
Carly schedules, researches, and briefs you—so you can focus on what matters.
See what people say
"Before Carly, I relied on a Calendly link, but the whole process felt impersonal and not very professional. Carly changed that by handling all the back-and-forth, so I'm no longer stuck in endless email threads trying to line up schedules.
Now Carly reaches out to candidates, shares my real-time availability, lets them pick a slot, then sends a Zoom link and drops it straight into my calendar. She sends reminders to both of us before each call, which has significantly reduced no-shows and last-minute confusion.
On top of scheduling, Carly acts like a full executive assistant, sending me my schedule the night before so I can prepare for each call. It reminds me of the old x.ai assistant, but Carly is noticeably smarter, faster, and better suited to my healthcare recruitment business."