SOC Compliance Nightmare: How One Wisegate Member Fast Tracked the Learning Curve
Service Organization Controls (SOC) 1, SOC 2 and SOC 3 are assurance reports for internal controls beyond financial data, and are driven by an increasing popularity of outsourcing business processes to service organizations. Many of these third party service organizations include cloud data storage and computing providers, which causes heightened concerns around confidentiality, privacy, security, availability and processing integrity. One member was able to fast track implementation of American Institute of CPAs’ (AICPA) SOC 2 requirements.
This member had the SOC 1 under their belt, but needed a faster way to learn and apply the SOC 2 requirements to their organization and meet a compliance deadline. Through Wisegate, this member connected one-on-one with a fellow member, who led SOC 1, 2 and 3 PCI assessments for their organization. On a phone call the member learned:
- About the policies
- Monitoring and communication requirements
- What was required to be deemed SOC 2 compliant
- Guidelines for prioritizing requirement implementation
- How much money, time, and effort the other company spent for their assessments, which was useful for budgeting
- Applicable insights and best practices
Through Wisegate’s community of senior-level IT and security professionals, we’ve learned one of the keys to answering today’s most pressing problems is providing digestible information that is fast, credible and offers a unique perspective.
When senior-level IT and security professionals have pressing problems and questions, they turn to Wisegate because we can foster helpful discussions and provide reliable information from members with various skill sets and experiences.
Wisegate strives to connect professionals, like yourself, with peers, to help save your precious resources. Want to join the community? Apply today here, take a video tour, and reach out to us on Twitter, LinkedIn, Google+, or email (firstname.lastname@example.org).
If you would like to receive our newsletters and toolkits, sign up here.