SOC Reporting

SOC 2 – CC2, 4, & 5 Best Practices

For a smooth SOC 2 process, companies should ensure controls are accurate, efforts are effective, and responsibilities are communicated. Without these, the rest of your program will likely run into [...]

By Madison Loewe|2022-12-09T15:17:29+00:00December 8th, 2022|SOC Reporting|0 Comments

Risk3sixty Successfully Completes SOC 1 and SOC 2 Peer Review

Successful completion of the security and compliance process is an affirmation of risk3sixy’s quality assurance processes using their proprietary Phalanx GRC platform. ATLANTA – October 11, 2022 - Risk3sixty, a [...]

By Corey Brown|2022-10-11T16:12:54+00:00October 11th, 2022|News and Events, SOC Reporting|0 Comments

CC1 Best Practices

Imagine you are working on your SOC 2 report and trying to ensure you meet the CC1 (Common Criteria) controls. Most of these are met by performing corporate strategy [...]

By Madison Loewe|2022-09-22T13:37:44+00:00September 22nd, 2022|SOC Reporting|0 Comments

HITRUST i1 vs SOC 2: What’s The Difference?

SOC 2 vs HITRUST i1 SOC 2 is a reporting framework developed and maintained by the American Institute of Certified Public Accountants (AICPA), and as such, a SOC 2 report [...]

By Gary Holverson|2022-09-07T13:58:58+00:00September 7th, 2022|HITRUST, SOC Reporting|0 Comments

3 Steps to Get Started with SOC 2

So, you’ve decided to get a SOC 2 Report (SOC 2 Attestation). However, you aren’t sure where to begin. This article details what you need to know before you start, [...]

By Madison Loewe|2022-08-02T15:23:08+00:00August 2nd, 2022|SOC Reporting|0 Comments

8 Improvements to Apply Before your SOC 2 Gap Assessment

Before starting on your gap assessment, there are a few improvements that you can put in place to make your remediation period go by quicker and allow your team to [...]

By Madison Loewe|2022-08-02T15:13:47+00:00August 1st, 2022|SOC Reporting|0 Comments

How risk3sixty Uses SOC 2 to Demonstrate HIPAA Compliance

The AICPA-designated SOC 2 framework is used to express an opinion on controls over security, privacy, availability, confidentiality, and processing integrity for many different systems, organizations, and environments. In addition [...]

By Yousef Ali|2021-07-13T16:39:33+00:00July 13th, 2021|SOC Reporting|0 Comments

How to Read a SOC 2 System Description

In this blog, we’ll dive into one of the most important parts of a SOC 2 report, the SOC 2 System Description! During your due diligence process, a vendor sends [...]

By Kendall Morris|2021-01-27T21:22:32+00:00January 25th, 2021|SOC Reporting|0 Comments

SOC 2 Trust Services Criteria That Apply to Your Business

A guide to the Trust Services Criteria Knowing when to include the various SOC 2 Trust Services Criteria (TSC) (also, criteria) can seem like a daunting task, but it does [...]

By Phillip Lee|2020-10-19T19:53:10+00:00October 19th, 2020|SOC Reporting|0 Comments

SOC 2 Success in 5 Simple Steps

How can you ensure success for your company’s SOC 2 initiative? Here are 5 Steps to SOC 2 success – best practices and lessons learned from the field! I have [...]

By Christian White|2020-09-28T14:50:09+00:00September 28th, 2020|SOC Reporting|0 Comments

12 Next