SOC 2 – Governance, Risk, & Compliance

12 must-have policies and procedures for ISO 27001 & SOC 2 audit

Posted on June 11, 2019November 10, 2019 by Shobhit Mehta

As we discussed in an earlier post, the primary requirement for a SOC 2 audit is when a company provides services to a third party. As per the AICPA, the SOC 2 consists of the following Trust Services Principles (TSPs): Security (also known as Common Criteria) Availability Processing Integrity Confidentiality Privacy The scope for each…

Why do we need Governance Frameworks, SOC 2 Audits, & Compliance?

Posted on February 25, 2019November 10, 2019 by Shobhit Mehta

Yesterday I met my previous roommate who’s a Computer Science nerd and recently completed his internship at one of the best tech companies in the Valley. We met after a long time and soon after discussing how we’ve been, he asked about my work. I told him – “I am currently working on the Governance…