Utilizing SOC Examinations to Help with Vendor Management
You most likely selected the link to this blog to discover one of two things: 1) how to effectively manage vendor requirements via SOC reports or 2) what the SOC 1/SOC 2 examination...
Read Article
Clearing Up The Confusion - Type 1 vs Type 2 and the Value Proposition
It may come as a bit of a surprise—maybe not—but there are actually two types of SOC reports. Upon examination, the service organization is responsible for specifying whether or not a...
Read Article
SOC 2 But Not SOC 2+HITRUST?
Can my organization successfully complete a SOC 2 but still not successfully complete a SOC 2 + HITRUST?
Read Article
Not A Game of Eeny, Meeny, Miny, Moe: Do Data Centers Need a SOC 1 or SOC 2?
The first question many service organizations have when they begin the process of researching Service Organization Control (SOC) reports is: which SOC report(s) do they need? The American...
Read Article
Financial Services - Is there a SOC 1 in your future?
Why would a financial services company need a SOC 1?
Read Article
Is your organization ready for a SOC 2 examination
Here are five steps to help successfully prepare:
1. Validate the Nature of the Request.
Does your client base understand the various SOC reporting options and what they are asking of...
Read Article
Choosing the Correct SOC 2 Principles
Choosing the correct SOC 2 TSP boils down to what principles are right for your business, services, and customers.
Read Article
SOC 2 + Additional Criteria What I Need to Know
What is the SOC 2?
At a high level a SOC 2 examination is a report on internal controls of a service organization related to the Trust Service Principles and Criteria (TSPs), which...
Read Article
Picking between ISO 27001 or SOC 2
With the rising popularity of compliance efforts today driven by factors such as customer demands, regulatory requirements, and/or a company’s willingness to demonstrate their internal...
Read Article
1:00:55
59:13
1:00:22
1:30
