SOC 2® for Service Organizations

This library of SOC 2^® for Service Organizations Playbooks provides a set of fully loaded and editable templates that represent the core of what is generally required to demonstrate compliance with the 2017 Trust Services Criteria for:

Security
Availability
Processing Integrity
Confidentiality, and
Privacy

They lay out in convenient and easily usable format, the control criteria established by the Assurance Services Executive Committee (ASEC) of the AICPA for use in attestation or consulting engagements to evaluate and report on controls over the security, availability, processing integrity, confidentiality, or privacy of information and systems (a) across an entire entity; (b) at a subsidiary, division, or operating unit level; (c) within a function relevant to the entity’s operational, reporting, or compliance objectives; or (d) for a particular type of information used by the entity.

Out-of-the-Box Functionality

Our extensive library of fully loaded, ready to use “smart” Playbooks allows you to get started straight away. No training, no new technology, once you can use excel, you’re ready to use GRC Playbook.

Reporting Clarity

Generate meaningful and actionable Dashboards, Status and Management Reports, and slice and dice your data any way you want through our tight integration with Microsoft Power BI.

Scalable Ease-of-Use

Our expanding library of Playbooks give you three scalable work modes to suit your and your client’s needs – simple ControlSCAN, more detailed DiagnosticREVIEW, and full RCM Assessment.

Control Scans

Gap analyses against authoritative best practices and applicable international frameworks

Designed to provide the user with a rapid assessment of the organization’s control/compliance “gaps” – in advance of a more in-depth assessment

DiagnosticREVIEW

Mid-level analysis. A more-in depth review of your chosen subject area.

RCM Assessment

A full-scale Risk and Control Matrix Assessment that gives you the most comprehensive view of your subject area.