At Intercom, security is a top priority, with the InfoSec team protecting customer data and trust. The team has invested heavily in security assurance to foster and safeguard customers' trust, achieving SOC2 Type II and HIPAA attestation reports, and ISO27001 certification. To meet the needs of growing mid-market and enterprise customers, Intercom's InfoSec team focuses on investing in your trust through compliance with industry security standards, shipping quickly and securely, continuous risk management, and hiring talented individuals to join the Information Security team. The team is embedded within the R&D org, allowing for close proximity to risk while retaining company-wide visibility and impact. Intercom's approach to security is fundamentally risk-based and relies heavily on a continuous internal security risk management process to evolve. The team also prioritizes education, enabling, and empowering people across the company to protect Intercom's ability to move fast and securely. With a focus on cultivating Intercom talent to overcome the InfoSec skills shortage, the team takes an alternative approach of investing in internal transfers and early growth mindsets to navigate the InfoSec learning curve. As Intercom grows and evolves, the InfoSec team will continue to foster and safeguard customers' trust by addressing emerging security challenges and building robust security controls within the product.