Newsroom

System and Organization Controls for Service Organizations 2 (SOC 2) compliance isn't mandatory. No industry requires a SOC 2 report. Nor is SOC 2 compliance law or regulation. But your s ...

Standards come in a variety of forms. Some standards help you comply with requirements, while others help you prove your compliance to others. SOC 2 and ISO 27001 complement each other by gi ...

The typical asset manager in the IT space ensures the daily and long-term strategic management of the company's software and hardware. However, she also must establish relationships with ser ...

A SOC team is to information security as a defensive team is to NFL football. Being a Monday morning quarterback for your favorite team can be an enjoyable pastime after a close game. Unfort ...

The Fine Art of Scoping a SOC 2 Audit Once upon a time, performing a SOC 2 audit was a rite of passage for service companies: “Wow, we’re so successful now that big clients want us to d ...

Artificial intelligence in security strikes fear into the heart of the average person. The term alone seems to indicate something straight out of a science fiction movie complete with Arnold ...

If you’re a service provider to public companies (or to any other organization that takes corporate compliance seriously) you’ll soon encounter the need for a SOC audit. Maybe a customer ...

Meeting the standards of a Service Organization Control Level 2 audit (more commonly known as achieving SOC 2 compliance) demonstrates your organization’s commitment to data security and t ...