By clicking “Accept”, you agree to the use of cookies on your device in accordance with our Privacy and Cookie policies.

Manage CookiesACCEPT
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters
Blogs
Glossary
Guides
Videos

Follow us

GLOSSARY
SOC 2
SOC 2 auditor

What is a SOC 2 auditor?

To obtain a SOC 2 audit and report, an organization’s security measures must be reviewed and verified by a certified auditor. Only licensed CPA firms can perform a SOC 2 examination.


SOC auditors are independent CPAs who work with the SOC (System and Organization Controls) suite to evaluate and report on the controls in place at a service organization, relevant to a set of criteria known as the Trust Services Criteria: Security, Availability, Processing Integrity, Confidentiality, or Privacy. A SOC 2 auditor’s independent verification of an organization’s security systems is intended to help service organizations provide their customers and prospects with valuable information about how they manage data and information security.


Working with a CPA and certified SOC 2 auditor is a key part of obtaining a SOC 2 report.

Additional resources you might like:

Blog
Product updates

New in Vanta | November 2022

In this month’s product update, we’re thrilled to announce Access Reviews, our new Monitors page, additional integrations, support for OFDSS & ISO 27001:2022, and more.

Video
Security

Coffee & Compliance: The future of endpoint security

Join us for our newest episode of Coffee & Compliance, where we discuss the future of endpoint security with Scott Simkin, VP, Portfolio and Product Marketing from CrowdStrike.

Guide
NIST

The ultimate guide to NIST 800-171

Jumpstart your NIST 800-171 compliance with Vanta's complete guide to this legally required security standard.

The compliance news you need. Delivered securely to your inbox.

Everything you need to get compliance audit ready, fast.

GET STARTED TODAYGET STARTED TODAY

Vanta is the easy way to get and stay compliant. Thousands of fast-growing companies depend on Vanta to automate their security monitoring and get ready for security audits in weeks, not months. Simply connect your tools to Vanta, fix the gaps on your dashboard, and then work with a Vanta-trained auditor to complete your audit.

Products
SOC 2ISO 27001GDPRHIPAAPCI DSSCCPAAdditional FrameworksIntegrations
Customers
Customer Case Studies
Resources
BlogsGuidesGlossaryVideosAll Resources
Company
AboutCareersPressSecuritySystem StatusTrust Report
Manage CookiesTermsPrivacy