SOC is short for “system and organization controls,” and the controls are a series of standards designed to help measure how well a given service provider manages and regulates its information. SOC 2 is an in-depth external audit presented in a comprehensive final report that closely examines a company’s information systems, ensuring that its information security practices meet five trust principles established by The American Institute of CPAs (AICPA):
-
Security
-
Availability
-
Processing integrity
-
Confidentiality
-
Privacy