Blog

SOC 2 Academy: How Contractual Obligations Impact Confidential Information

by Joseph Kirkpatrick / December 16, 2022

Confidentiality Criteria 1.2 When an organization pursues SOC 2 compliance, an auditor will verify that they comply with the common criteria listed in the 2017 Trust Services Criteria. In addition to the common criteria, though, there’s additional criteria for the availability, confidentiality, processing integrity, and privacy categories. For example, if an organization opts to include the confidentiality category in their audit, they would need to comply with the additional criteria…

SOC 2 Academy: Testing Your Business Continuity Plan

by Joseph Kirkpatrick / December 16, 2022

Availability Criteria 1.3 When an organization pursues SOC 2 compliance, an auditor will verify that they comply with the common criteria listed in the 2017 Trust Services Criteria. In addition to the common criteria, though, there’s additional criteria for the availability, confidentiality, processing integrity, and privacy categories. For example, if an organization opts to include the availability category in their audit, they would need to comply with the additional criteria…

SOC 2 Academy: Classifying Confidential Information

by Joseph Kirkpatrick / December 16, 2022

Confidentiality Criteria 1.1 When an organization pursues SOC 2 compliance, an auditor will verify that they comply with the common criteria listed in the 2017 Trust Services Criteria. In addition to the common criteria, though, there’s additional criteria for the availability, confidentiality, processing integrity, and privacy categories. For example, if an organization opts to include the confidentiality category in their audit, they would need to comply with the additional criteria…

SOC 2 Academy: Data Backup Processes

by Joseph Kirkpatrick / December 16, 2022

Availability Criteria 1.2 When an organization pursues SOC 2 compliance, an auditor will verify that they comply with the common criteria listed in the 2017 Trust Services Criteria. In addition to the common criteria, though, there’s additional criteria for the availability, confidentiality, processing integrity, and privacy categories. For example, if an organization opts to include the availability category in their audit, they would need to comply with the additional criteria…

6 Information Security Basics Your Organization Needs to Implement

by Sarah Harvey / December 16, 2022

What Should be Included in an Information Security Program? Ensuring that sensitive information remains secure, available, and confidential is the most important goal when setting up an information security program, but knowing what you need to include to make that happen can be challenging. In today’s threat landscape, organizations must make it a priority to identify and mitigate any potential vulnerability in their information security system and that process begins…

SOC 2 Academy: How Contractual Obligations Impact Confidential Information

SOC 2 Academy: Testing Your Business Continuity Plan

SOC 2 Academy: Classifying Confidential Information

SOC 2 Academy: Data Backup Processes

6 Information Security Basics Your Organization Needs to Implement

Categories

Newsletter

Learn what you need to get started with our Audit Readiness Guide.

BLOG

SOC 2 Academy: How Contractual Obligations Impact Confidential Information

SOC 2 Academy: Testing Your Business Continuity Plan

SOC 2 Academy: Classifying Confidential Information

SOC 2 Academy: Data Backup Processes

6 Information Security Basics Your Organization Needs to Implement

Categories

Newsletter

Our Cybersecurity Mission