SOC 2 Compliance and Your Emerging Enterprise

As a leader of a small or mid-sized business (SMB), you may be happy with your current state. However, while not every SMB leader wants to become the next Amazon or Walmart, many do have plans for growth. Here’s how SOC 2 compliance can help those emerging enterprises with those plans.

Continue Reading »

Get audit-ready, conduct your exam and get a report from Trustero

Trustero now offers you the SOC 2 compliance help you need at a price you can afford: Trustero Compliance as a Service for Startups. This “all-in-one” package combines the Trustero Compliance as a Service platform with everything a startup needs to get and stay compliant with SOC 2, and includes a complete SOC 2 compliance report by a certified, experienced auditor.

Continue Reading »

SOC 2 Compliance and Hybrid Workstyles

The COVID pandemic and The Great Resignation have led to extensive upheaval in workforces and workplaces. Some workers are returning to revised workplaces and schedules. Some are working from home and may do so indefinitely. How best to achieve and maintain continuous SOC 2 compliance in the face of these seismic shifts?

Zero Trust and SOC 2

Zero-Trust: How SOC 2 Compliance Can Help

The Cloud Security Alliance (CSA) has released the first in a series of research summaries culled from a survey about the adoption of so-called zero-trust cybersecurity principles. The results of that survey indicated that achieving and sustaining SOC 2 compliance can help ease, speed and spread adoption of zero-trust across almost any SMB or emerging enterprise.

Continue Reading »
SOC 2 Controls: Regular User Access Reviews

SOC 2 Controls: Regular User Access Reviews

This SOC 2 control focuses on ensuring your company regularly reviews who has access to critical IT infrastructure. For this control, your company must log these reviews and take any actions to resolve any access issues discovered during a review.
There are many ways to word such a control, and you should work with your auditor to find the precise wording for your company. The control’s wording must be precise, concise, and authoritative.

Continue Reading »

SOC 2 Compliance: 4 Ways to Prevent Personnel Problems

The global coronavirus pandemic, the Great Recession, and the Great Resignation have significantly disrupted staffing at all levels at many organizations. These issues could also derail or halt your SOC 2 compliance journey. Here are 4 steps to preparing and mitigating personnel problems:
1) Capture relevant institutional knowledge before it leaves
2) Get your policies together
3) Keep all documentation current
4) Get compliance automation software

Continue Reading »
Everything Compliance Video Series

SOC 2 Compliance: Questions and Answers with Compliance Expert Bert Friedman

This Q&A session was pulled from a recent episode of Everything Compliance featuring Bert Friedman. Bert Friedman is Head of Compliance at business banking startup Nearside and former Vice President of Compliance for the Financial Intelligence Unit of Chicago’s Community Choice Financial, Inc. Learn what Bert has to say about dealing with auditors and common SOC 2 compliance misconceptions.

Continue Reading »