Ask An Auditor

Connect with compliance auditors and get your questions answered.

On-Demand: Ask an Auditor With Special Guest Steve Cullen

There’s no agenda or script—just 30 minutes of real-time answers to questions you’ve always wanted to ask regarding the ISO 27001 certification process, including:

  • How do I know when my organization is ready for ISO 27001 Certification?

  • What makes ISO 27001 different from SOC2?

  • What things should I take into consideration when choosing an auditor?

Join us on May 23 at 1 p.m. ET/10 a.m. PT. Steve is here to provide you with the auditor perspective. Can’t make it live? Submit your question anyways, and we’ll send the recording after.

About Steve

Steve Cullen, MBA, ISO 27001 Lead Auditor, HITRUST CCSFP, is the Founder and Managing Director of ARORA Solutions LLC. Steve began his career working for one of the largest ISO certification bodies in North America, NSF International.

Following his time in the Peace Corps, Steve founded ARORA Solutions, performing audits throughout Asia-Pacific and North American regions. Through working with a variety of cultures, clients and certification bodies, Steve and his team have found that a human-centric approach can help pivot companies to embrace a security centric culture that allows for flexibility and innovation.


​​ARORA Solutions LLC is an audit and technology company focused on empowering people and organizations for a better world. ARORA takes a human and heart-centered approach to internal auditing and readiness for ISO 27001. Steve and his team believe that an excellent cybersecurity professional and auditor must understand the culture of an organization, be personable, be flexible, and help to drive value and innovation deep from within.

Meet the thousands of companies that trust Drata

Abnormal Logo
BambooHR Logo
Clearbit Logo
Clearco Logo
Lemonade Logo
Notion Logo
Postman Logo
Vercel Logo
Wordpress VIP

Automate Your Journey

Drata's platform experience is designed by security and compliance experts so you don't have to be one.


Easily integrate your tech stack with Drata.


Pre-map auditor validated controls.


Begin automating evidence collection.

Put Security & Compliance on Autopilot®

Close more sales and build trust faster while eliminating hundreds of hours of manual work to maintain compliance.