SOC 1 & 2 equivalent for International Vendor
I'm attempting to find the SOC2 equivalent for international company due diligence for new international vendor
Assign topic to the user
ISO 27001 SUPPLIER SECURITY POLICY
Define how suppliers and partners need to keep your information safe.
Get it now 
ISO 27001 SUPPLIER SECURITY POLICY
Define how suppliers and partners need to keep your information safe.
Get it now
ISO 27001 SUPPLIER SECURITY POLICY
Define how suppliers and partners need to keep your information safe.
Get it now
We're not experts in SOC 2, but there are many common points between SOC II and ISO 27001:2013 that may allow you to adopt ISO 27001 for due diligence for a new international vendor: risk management, internal audit, business continuity, access control, etc.
If you want to know details about the similarities about both standards, and what resources can be shared, you can see the document “Trust Services Map to ISO 27001” in the official site of the American Institute of CPAs. You can find it at this link: https://www.aicpa.org/content/dam/aicpa/interestareas/frc/assuranceadvisoryservices/downloadabledocuments/othermapping/trust-services-map-to-iso-27001.xlsx
Comment as guest or Sign in
Aug 25, 2020