Service Organization Control

SOC 2 standard reports on organizational controls related to security, availability, processing integrity, confidentiality, or privacy. The SOC 2 report is designed to provide detailed information and assurance to interested parties about the suitability and effectiveness of the service organization’s controls based on their compliance with the AICPA’s (American Institute of Certified Public Accountants) TSC (Trust Services Criteria).

FZ Consulting helps businesses to ready for a SOC 2 audit by:

  • Reviewing the audit scope

  • Developing a project plan

  • Designing the policies, procedures, and processes controls

  • Documenting the results

  • Delivering and communicating the SOC 2 final report

Scope of the frameworks SOC 2 and ISO 27
Combine ISO 27001 and SOC 2 easily

This article exposes the differences between these two frameworks.

You will also find, in it, a free downloadable map of the two standards