Case Study: Sourcegraph increases audit efficiency with Anecdotes

How Anecdotes helped Sourcegraph increase efficiency in their audits with Geel Norton without compromising quality

Sourcegraph, a code intelligence platform, needed a more efficient way to manage its mature security and GRC program and reduce the burden of complex audits. After evaluating several tools, the company chose Anecdotes for its data-centric GRC approach and ability to support continuous compliance while improving internal processes.

Using Anecdotes’ Compliance OS, Sourcegraph connected its tech stack, automated evidence collection, and used the Risk and User Access Review applications to strengthen its GRC workflows. For audits with Geels Norton, Anecdotes helped Sourcegraph build a custom SOC 2 framework, map evidence to controls, and collaborate through the auditor portal, significantly reducing audit prep time and back-and-forth while improving transparency, efficiency, and overall audit quality.

Sourcegraph

Diego Comas

Head of Security