Successful completion of the security and compliance process is an affirmation of risk3sixy’s quality assurance processes using their proprietary Phalanx GRC platform. ATLANTA – October 11, 2022 - Risk3sixty, a [...]
Imagine you are working on your SOC 2 report and trying to ensure you meet the CC1 (Common Criteria) controls. Most of these are met by performing corporate strategy [...]
SOC 2 vs HITRUST i1 SOC 2 is a reporting framework developed and maintained by the American Institute of Certified Public Accountants (AICPA), and as such, a SOC 2 report [...]
So, you’ve decided to get a SOC 2 Report (SOC 2 Attestation). However, you aren’t sure where to begin. This article details what you need to know before you start, [...]
Before starting on your gap assessment, there are a few improvements that you can put in place to make your remediation period go by quicker and allow your team to [...]
The AICPA-designated SOC 2 framework is used to express an opinion on controls over security, privacy, availability, confidentiality, and processing integrity for many different systems, organizations, and environments. In addition [...]
In this blog, we’ll dive into one of the most important parts of a SOC 2 report, the SOC 2 System Description! During your due diligence process, a vendor sends [...]
A guide to the Trust Services Criteria Knowing when to include the various SOC 2 Trust Services Criteria (TSC) (also, criteria) can seem like a daunting task, but it does [...]
How can you ensure success for your company’s SOC 2 initiative? Here are 5 Steps to SOC 2 success – best practices and lessons learned from the field! I have [...]
If you just received a SOC 2 report and do not know where to start analyzing, this blog is for you! SOC 2 reports can easily reach 50+ pages and [...]