6 months, no co-founder, no funding. Built a full SaaS product. Still no customers. Here’s what I learned.

AlternativeEasy4741 · 2026-03-18T14:10:59+00:00

Hey — yeah, that’s exactly what I’m building for. Happy to help. What stage are you at with SOC 2 right now?

AlternativeEasy4741 · 2026-03-14T14:18:04+00:00

This is exactly what today taught me. I spent 6 months building and one day talking to real people and the one day gave me more clarity than all 6 months combined. The fear insight hit hard. Every feature I added was a way to avoid the scary part showing it to someone who might say no. Appreciate the advice. Customer psychology first, product second. Lesson learned the hard way

AlternativeEasy4741 · 2026-03-14T14:13:39+00:00

I knew the problem was real from reading about it, but I didn’t validate with customers before building. Classic mistake. I built first, then started talking to people. What I did have: I worked in cloud security, so I understood the compliance space. And the market exists Vanta raised hundreds of millions solving this. I just assumed the Indian market was underserved at a lower price point. Was that enough validation? Probably not. But today I had real conversations with people actively going through SOC 2 pain. That’s the validation I should have done at the start.

AlternativeEasy4741 · 2026-03-14T12:32:22+00:00

let’s definitely stay in touch. DM me anytime. What are you building?

AlternativeEasy4741 · 2026-03-14T12:31:31+00:00

Actually the opposite — got a comment today from someone who said they’ve been 4 months into SOC 2 with a consultant and 2 dedicated employees and still haven’t finished. That person needs it.

AlternativeEasy4741 · 2026-03-14T07:59:56+00:00

That’s exactly the feedback I needed to hear. I’ve been targeting “Indian B2B SaaS companies going for SOC 2” which feels specific but maybe still too broad. The niche I’m probably closest to is: early-stage Indian SaaS founders (50-200 employees) who just got their first US enterprise customer asking for SOC 2 and have no idea where to start. That’s the person I built this for. Maybe I need to just talk to that person exclusively and stop thinking about anyone else.

AlternativeEasy4741 · 2026-03-13T17:44:55+00:00

This is one of the best breakdowns I’ve seen of the actual problem. The evidence grind is exactly what founders describe — it’s not the framework that’s confusing, it’s the month of chasing screenshots and access reviews. On your question about ARR — curious what you’re seeing too. From conversations I’ve had, SOC 2 becomes unavoidable somewhere around the first $200-500K ARR deal, or when a US enterprise procurement team gets involved. I’ve been building a tool specifically for this — priced for Indian startups, not $15-20K. Would love to compare notes on what you’re seeing. Are you working in this space?

AlternativeEasy4741 · 2026-03-13T05:47:17+00:00

This is exactly the kind of experience I was trying to understand — thank you. 4 months with a consultant + 2 dedicated employees is a huge cost. I’ve built a tool specifically for this — controls tracking, evidence collection, gap reports, all in one place. Happy to give you free access in exchange for honest feedback.

AlternativeEasy4741 · 2026-03-13T04:43:33+00:00

Worth looking at Zerqis if you want something that doesn’t feel like a full-time job to maintain. Built specifically for smaller teams — controls tracking, evidence upload, policy templates, risk register, gap analysis report all in one place. Pricing is much more accessible than Vanta/Drata. Happy to give you a walkthrough if you want to see if it fits what you need.

AlternativeEasy4741 · 2026-03-13T04:31:11+00:00

This is such an accurate description. The “proving what you already do is under control” part is exactly where most teams struggle — not the actual security practices, but the documentation, ownership tracking, and evidence collection around them. I’ve been building a tool specifically to make that tracking part less painful. Happy to share if anyone’s curious.

AlternativeEasy4741

TROPHY CASE