SOC 2 auditor

More Terms

HIPAA
ISO 27001
GRC
SOC reports
SOC 1
SOC 2
SOC 3
SSAE 16
SSAE 18
AICPA
SOC 2 auditor
SOC Trust Services Criteria
Compliance risk management
IT security policy
Vendor management policy
Vendor review
Vendor assessment
Security questionnaire
Compliance software
HIPAA employee training
HIPAA Rules
ISO27001 security standard

What is a SOC 2 auditor? To obtain a SOC 2 audit and report, an organization’s security measures must be reviewed and verified by a certified auditor. Only licensed CPA firms can perform a SOC 2 examination.

SOC auditors are independent CPAs who work with the SOC (System and Organization Controls) suite to evaluate and report on the controls in place at a service organization, relevant to a set of criteria known as the Trust Services Criteria: Security, Availability, Processing Integrity, Confidentiality, or Privacy. A SOC 2 auditor’s independent verification of an organization’s security systems is intended to help service organizations provide their customers and prospects with valuable information about how they manage data and information security.

Working with a CPA and certified SOC 2 auditor is a key part of obtaining a SOC 2 report.

Go back to glossary

Everything you need to get compliance audit ready, fast

Get Started
About
Careers
Glossary
Privacy PolicyTerms & Conditions
Vanta Inc. © -
We'll email you within 24 hours
Please enter your first name
Please enter your last name
Please enter a valid email address
Please enter your company website
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.