SOC 2 Trusted Services Criteria Question Set
Details
This download includes the SOC2 Trusted Services Criteria as a set of provisions only so there are no mapped questions. Use this download if you just want the provisions and you want to create your own question set.
The 2017 Trust Services Criteria provides 5 criteria in the accounting sector covering the areas of Security, Availability, Processing Integrity, Confidentiality, and Privacy for use in attestation or consulting engagements to evaluate and report on controls across an entire entity; at a subsidiary, division, or operating unit level; within a function relevant to the entity's operational, reporting, or compliance objectives; or for a particular type of information used by the entity.
The SOC2 Trusted Services Criteria includes 70 provisions across 9 domains and 4 additional criteria domains which are:
- CONTROL ENVIRONMENT
- COMMUNICATION AND INFORMATION
- RISK ASSESSMENT
- MONITORING ACTIVITIES
- CONTROL ACTIVITIES - Logical and Physical Access Controls
- - System Operations
- - Change Management
- - Risk Mitigation
- ADDITIONAL CRITERIA FOR AVAILABILITY
- ADDITIONAL CRITERIA FOR CONFIDENTIALITY
- ADDITIONAL CRITERIA FOR PROCESSING INTEGRITY (OVER THE PROVISION OF SERVICES OR THE PRODUCTION, MANUFACTURING, OR DISTRIBUTION OF GOODS)
- ADDITIONAL CRITERIA FOR PRIVACY
Getting Started
Click "Book a demo" and our team will provide you with an overview of our content library within the 6clicks GRC platform.More Information
Jurisdiction | All |
---|---|
Type | Assessment |