risk3sixty white papers

SOC 2:

What Updates to COSO 2013 Mean for You

What SOC 2 Updates to COSO 2013 Mean for You

Overview

Beginning December 15, 2018, (with optional adoption beginning April 2017) all SOC 2 reports will be required to utilize the updated Trust Services Criteria. The updated trust services criteria are an update to align with the seventeen COSO 2013 framework principles.

Key Updates:

  • 1: Updates to SOC 2 Criteria to align with 17 COSO 2013 Requirements.
  • 2: At least 6 areas where you might have gaps.
  • 3: New emphasis on third party risk management
  • 4: Clarity on aligning risk assessment with business objectives
  • 5: Specificity around quality data to support internal control
  • 6: Engagement from top level leadership (including the Board of Directors)

Team Specialist

Christian Hyatt

CEO & Co-founder

Christian is the CEO and Co-founder of risk3sixty. Christian is responsible for setting the vision for the team, ensuring the leadership team is “rowing in the same direction,” creating purpose and alignment across the firm, and nurturing company culture. Christian has 15 years of experience advising technology companies to build and improve their cybersecurity programs. Christian works hard to partner with executives to help ensure they have the strategy and tactics to align cybersecurity and business objectives. Under Christian’s leadership, risk3sixty has been named Consulting Magazine’s Best Firms to Work For, Atlanta’s Fastest Growing companies, Atlanta’s Best Places to Work, HireVets Platinum Honoree, and more. Outside risk3sixty, Christian advises technology start-ups on business and growth challenges is an author and, keynote speaker, and Vistage member. Christian has an M.B.A. from Georgia Tech and a B.B.A. from the University of Georgia. Christian is a Georgia Tech Technology and Management (T&M) corporate partner and Advisory Board Member for UGA’s Management Information System Advisory Board.

Team Specialist

Cory Wolff

Director of Offensive Security

Cory Wolff is a lifelong hacker with decades of experience in IT, security and development who serves as the Director of Offensive Security at risk3sixty. He has been building and breaking various technologies since his first computer in 1988 and has helped businesses of all sizes secure their infrastructure, build future-forward applications, and grow their information security programs since 2002. Cory holds various certifications including the Offensive Security Certified Professional (OSCP) and Certified Information Systems Security Professional (CISSP) and serves as a core team member of Red Team Village.

Speak With An Expert

Let Us Know How We Can Help

Fill out the form and let us know what service you’re interested in; or ask any general question and we’ll get back to you as soon as possible.