The Bleach Breach: How a Quality SOC 2 Audit Could Have Helped Clorox

by Tori Thurmond / October 12, 2023

Another day, another breach. There have been quite a few cybersecurity events breaking the news involving major companies lately—one of the notable events involving Clorox.   Back in August, the multibillion-dollar corporation discovered unauthorized activity in some of their IT systems. The organization enabled their business continuity plan (BCP), but was forced into processes that affected their production capacity. The product shortages resulted in the organization losing money each and every…

SOC 2 FAQs:  A Webinar Recap 

by Tori Thurmond / March 21, 2024

SOC 2 is one of our most popular audits here at KirkpatrickPrice. We know that many of our clients need and want to fulfil SOC 2 requirements to prove their commitment to compliance and satisfy client requests. That’s why we partnered with Lightspin, a cloud security platform, to tackle some SOC 2 FAQs in our latest webinar, SOC 2 in the Cloud for SaaS Companies.  During the webinar, our President…

Choosing Between SOC 2 and ISO 27001 Audits

by Sarah Harvey / June 13, 2023

So you’ve completed a SOC 2 audit, how prepared does that make you for an ISO 27001 audit? How do you know whether your organization needs a SOC 2 attestation or an ISO 27001 certification? For organizations working toward security compliance, deciding between these two audits depends on a few factors. While these audit frameworks are different in many ways, they also share some core similarities that make it difficult…

Combining SOC 1, SOC 2, and PCI Audits

by Sarah Harvey / June 13, 2023

An organization may choose a combined SOC 1, SOC 2, and PCI audit for many reasons. First, there are compliance requirements. A PCI audit may be mandatory, but too narrow of a scope to be useful to user entities, so a SOC 1 or SOC 2 is needed. Second, there are logistical reasons. If you have to go through all three audits, why not consolidate the effort into one process?…

Combining SOC 2 and HIPAA Audits

by Sarah Harvey / June 13, 2023

We get a lot of questions about SOC 2 and HIPAA audits. Should your company do both? Are you able to consolidate multiple audits into one project? KirkpatrickPrice has developed the Online Audit Manager to make it easier to combine multiple audits into one project. Let’s talk through why and how you would take on the project of a combined SOC 2 and HIPAA audit. What are SOC 2 and…