ISO/IEC 27001: 2022 - Your Guide to the Updates and How to Get (and Stay) Compliant

Jemurai talks about the good, bad, and ugly they see around cybersecurity audits.

Interviewing auditors is a necessary step in the process as you begin your SOC exam. Here we outline some questions and considerations to help you along the way.

There is nuance to this question, and other well-meaning and very smart people that I respect might give a different answer. But within the volumes of literature that set the standards, the true answer is this: There are absolutely no control requirements for SOC 2 reports.