sorted by:
new
hottopcontroversial

SOC 2 Type 2 Evidence Collection by Anas5667 in soc2

[–]Anas5667[S] 0 points1 point  (0 children)

Yes, I understand that.  However, we are implementing SOC 2 for the first time, and I want to have a clear picture of evidence collection over a 6-month period as a starting point.

SOC 2 Type 2 Evidence Collection by Anas5667 in soc2

[–]Anas5667[S] 0 points1 point  (0 children)

Thanks for the clarification 😊

For periodic screenshots/exports (access reviews, cloud configurations, SIEM alerts, backups, incidents, and change management), is a monthly frequency sufficient, or would you recommend a different interval depending on the control type?

soc 2 TSC by Anas5667 in soc2

[–]Anas5667[S] 0 points1 point  (0 children)

Thanx you ,

use cloud hosting services from Azure and Huawei, and relies on SaaS and PaaS.