SOC1/SOC2 Test

General controls:

Inventory Listing.
HR Employee Listing.
Access Group Listing.
Access transaction Log.

A.Organization and Management:

Organizational Chart.
Vendor assessments.

B.Communications:

Customer Contracts.
System Descriptors.
Policies and Technical specifications.

C.Risk Management and Design/Implementation of controls:

IT Risk Assessment.

D.Monitoring of controls:

Compliance Testing.
Firewall monitoring.
Intrusion Detection.
Vulnerabilities management.
Access Monitoring.

E.Logical and Physical Access controls:

Employment Verification.
Continuous Business Need.

F.System Operations

Incident Management.
Security Incident Management.
Customer Security Incident Management.
Customer Security Incident Reporting.

G.Change Management

Change Management.
Communication of changes.

H.Availability

Capacity Management.
Business Continuity.
Backup or equivalent.

Tutcyber

SOC1/SOC2 Test

Posted by bicky

Post a Comment

0 Comments

Popular Posts

Hypervisor && it's security

Make Money Like the Pros: The Secret Behind Quant Funds

Auditing/Accountibility && Virtualization security

Explore Endless Opportunities with OpenAI

Data Center Operations: Ensuring Efficiency and Reliability

Text to PDF Converter

Tags

Menu Footer Widget

Contact form

Tutcyber

SOC1/SOC2 Test

Posted by bicky

You may like these posts

Post a Comment

0 Comments

Social Plugin

Popular Posts

Hypervisor && it's security

Make Money Like the Pros: The Secret Behind Quant Funds

Auditing/Accountibility && Virtualization security

Explore Endless Opportunities with OpenAI

Data Center Operations: Ensuring Efficiency and Reliability

Text to PDF Converter

Tags

Menu Footer Widget

Contact form