Changes and Challenges: What we’ve learned since implementing the new SOC 2
As of December 15, 2018, all SOC 2 reports are now required to align with the COSO 2013 framework – a change that required many service organizations to not only restructure some of their internal controls, but also add new controls to ensure all criteria are met.
While the changes have added an additional layer of reassurance to user entities, they have also come with their fair share of compliance challenges and some things that may still seem unclear. Much of the content and controls remain the same under this new guidance, but there are a few areas that had significant changes including service commitments and system requirements in the system description, disclosure of system incidents in the system description and more.
During this complimentary webinar, we will cover what we’ve learned since implementing to new SOC 2 to include the various changes to the reporting requirements, as well as:
- Recap of Timing and Progress
- Overview of the Trust Services Criteria and COSO Framework
- A look into Additional COSO Based Criteria and System Descriptions
- Disclosure requirements for Incidents and Breaches
- The Impact and Practical Takeaways for your Organization
So, if you need any help navigating the SOC2 reporting requirements, listen as we walk you through the practical steps you can take to ensure you are effectively meeting the new requirements as well as some of the most common pitfalls to avoid.