The Compass:
More posts

Blog Post
7 min read
What controls are required for SOC 2® reports?
There is nuance to this question, and other well-meaning and very smart people that I respect might give a different answer. But within the volumes of literature that set the standards, the true answer is this: There are absolutely no control requirements for SOC 2 reports.
READ MORE


Blog Post
Why do SOC reports have to be issued by a CPA firm?
Find out why a CPA firm must issue your SOC report and why that's actually a good thing.
READ MORE


Article
ISO/IEC 27001: 2022 - Your Guide to the Updates and How to Get (and Stay) Compliant
Echelon Risk + Cyber, in this article, breaks down everything you need to know about the ISO 27001: 2022 updates.
READ MORE
