You don’t have to be infosec expert to make your organization more secure and compliant.