Information technology - standards.

SOC 2 is an abbreviation for Service Organisation Controls 2.

The SOC 2 report addresses a service organisation’s controls that relate to operations and compliance, in respect of availability, security, processing integrity, confidentiality and privacy.

A SOC 2 report includes a detailed description of the service auditor’s test of controls and results.

See also

• Cloud computing
• Information security management system
• Internal control
• ISO 27001
• Risk management
• Security
• SOC 1 report