Protecting customers’ data is a concern for all organizations regardless of the industry or size. Third-party assessments are a common way in which organizations prove their cybersecurity practices to vendors, customers, and prospects. SOC 2 examinations have become one of the de facto standards for organizations to prove how they are securely managing their customers’ data to protect their interests and privacy. Leverage SANS SOC 2 resources for practical and actionable guidance on all things SOC 2.
SOC 2 Examination - This cheat sheet presents an overview of the SOC 2 reporting framework. It outlines key components of the compliance framework to help leaders make informed decisions when pursuing a SOC 2.
SOC for Supply Chain, April 2022
SOC 2 Trust Services Categories, January 2022
An Expert's Guide to Reviewing SOC 2 Reports, December 2021