SOC 2 Mythbusters
Other content in this Stream
Should You Include Privacy as a Trust Service Category In Your SOC 2?
Not sure if you need the privacy category in your SOC 2? Put that confusion to rest as we detail the advantages and drawbacks of such, along with some alternatives that may suit your needs better.
Vendors vs. Subservice Organizations: What’s the Difference?
Not sure how to determine whether your vendor is a subservice organization? We provide all the details you need to tell the difference ahead of your next SOC examination.
How to Bridge From SOC 1 to SOC 2: Understanding the Relationship
Curious if your completed SOC 1 examination can help with a possible SOC 2? We overview how to connect your work in these two audits & how to choose the right path for you regarding your SOC reports.
Are ITGCs Important?
Wondering about ITGCs? We detail what these information technology general controls are, the role they play within your organization, and how to maintain them.
Lumen Case Study
Lumen Leverages Strategic Alignment Under One Assessor in Schellman
Which Trust Services Categories Should I Include In My Next SOC 2 Report?
Do You Have to Remediate Audit Findings?
Did you have a finding turn up in your SOC audit? Learn about why remediation is important every time, when you should do that, and what you can do in the meantime should you need to delay.
SOC 2 + HITRUST vs HITRUST
Which SOC Method Should You Use? Carve-Out vs. Inclusive
Going through a SOC examination and not sure what to do about your subservice organizations? We break down the two options you have, as well as considerations to make before selecting a method.
Which Big 4 Firm Should Perform Your SOC Audit?
The Big 4 are usually everyone's first instinct when it comes to SOC reports. We break each firm down and provide questions you can ask them all as you search for the right compliance firm for you.
What Is The Process of a SOC Examination
How to Scope a SOC 2 Audit: 3 Steps
Doing a SOC 2 audit but not sure what all you need to include? Learn about 3 clear steps you can take to more easily define the scope of your SOC 2 examination.
What are the SOC 2 Trust Services Categories?
If you’re someone who is considering a SOC 2 audit, learn about the Trust Services Categories and how to choose yours.
What Does a SOC 2 Examination Cost?
Do You Need a SOC 2 with Additional Criteria? 3 Frameworks to Consider
Did you know you can add criteria to your SOC 2 beyond the standard categories? Understand the advantages to adding additional criteria in your SOC 2 examination so that you make the right decision.
Which SOC Opinion Do You Want?
In your SOC report, your auditor will provide their opinion on the state of your systems & services. Read our blog to understand all your potential outcomes so that you know which to aim for.
How Long Does a SOC 2 Examination Take?
What is the typical timeline for a SOC 2 Examination? Ryan Buckner has your answer.
How to Perform a Risk Assessment Ahead of a SOC 2: 5 Steps
Ensure that you are both prepared for your SOC 2 examination and that you get the most from your efforts by following our 5-step process for risk assessments.
What Does a SOC Audit Cost? 3 Big Factors That Will Affect Your Pricing
Wondering what a SOC audit costs? To help you set price expectations, we lay out our rough price ranges, along with 3 variables that will factor into your final number.
How to Read Your Vendor’s SOC Report
Not sure which SOC report to request from your vendor(s)? Wondering how to get what you need out of it once you have it in hand? Learn exactly where to look for the information you need.