ISO/IEC 27001: 2022 - Your Guide to the Updates and How to Get (and Stay) Compliant

We partnered with SecFix on this article to share the differences between ISO 27001 certification and SOC 2 completion, and how you can leverage your work from one to the other.

A CEO on a mission to guide companies through the ever-changing world of technology.

There is nuance to this question, and other well-meaning and very smart people that I respect might give a different answer. But within the volumes of literature that set the standards, the true answer is this: There are absolutely no control requirements for SOC 2 reports.