Our Approach to SOC 2
Advisory and Attestation Services
Definition
Define the scope and the Trust Services Criterion applicable to your organisation, by understanding your business operations, controls, and systems.
Gap Analysis
Identify your organisation’s shortfalls in comparison to the SOC 2 standards
Awareness Training
Conduct a brief SOC 2 Awareness Training program for your organisation.
Remediation Support
Our process and tech team will collaborate with your team for the policy rollout.
SOC2 Document Set
Create the policy and procedure Document Set with your team’s input and approval.
User Training
A User Training program for all personnel and their specific responsibilities. Praesidio will provide all training documents
Asset Inventory
Identify and classify critical information assets in an Asset Inventory.
Risk Treatment
Conduct a brief SOC 2 Awareness Training program for your organisation.
Risk Assessment
Conduct a comprehensive Risk Assessment to identify weak areas and loopholes that could endanger your organisation’s critical assets.
Pre-assessment
After a reasonable waiting period, a separate team of experts conducts a Pre-assessment of your setup and measures implemented.
Attestation
Once all controls are in place, our US-based CPA auditor will audit your processes to confirm adherence to the SOC 2 requirements
Continual Support
If needed, we are happy to extend our continual support by offering our Managed Compliance Services to help your organisation stay certified