Guest user Created: Jan 24, 2019 Last commented: Jan 24, 2019

SOC 2 Audit Compliance

ISO 27001 & 22301

I need your help in gathering insight on how to do SOC 2 Audit Compliance in our organization.

1 0

Assign topic to the user

Select user

Expert

Rhand Leal Jan 24, 2019

Answer:

We're not experts in this field, but in general SOC 2 reports on various organizational controls related to security, availability, processing integrity, confidentiality or privacy, and to perform this audit you can consider an ISO 27001 internal audit approach:
- Identification of compliance requirements
- Elaboration of an audit checklist
- Performing the audit to gather compliance evidences
- Elaborate report

These articles will provide you further explanation about performing audits:
- How to prepare for an ISO 27001 internal audit https://advisera.com/27001academy/blog/2016/07/11/how-to-prepare-for-an-iso-27001-internal-audit/
- How to make an Internal Audit checklist for ISO 27001 / ISO 22301 https://advisera.com/27001academy/knowledgebase/how-to-make-an-internal-audit-checklist-for-iso-27001-iso-22301/

These materials will also help you regarding internal audit:
- ISO Internal Audit: A Plain English Guide https://advisera.com /books/iso-internal-audit-plain-english-guide/
- ISO 27001:2013 Internal Auditor course https://advisera.com/training/iso-27001-internal-auditor-course/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jan 24, 2019

Expert Advice Community