How a Cyber Spring Cleaning Can Protect Data, Build Client Trust

Putting the right team together can be exciting and challenging. It's something we think about a lot, so we decided to share the superheroes that make up our GRC dream team.

There is nuance to this question, and other well-meaning and very smart people that I respect might give a different answer. But within the volumes of literature that set the standards, the true answer is this: There are absolutely no control requirements for SOC 2 reports.

In general, all SOC 2 reports must cover the trust services criteria relevant to security, so that is a good place to start.