The American Institute of CPAs (AICPA) Service and Organization Controls (SOC) 2 reporting standard defines criteria for how organizations should manage customer data. Many organizations, especially SaaS companies, choose to establish and follow strict information security policies and procedures that adhere to the SOC 2 standard, and to undergo regular third-party audits to certify their compliance.
We'll help you determine which regulations your organization needs to meet.Contact Us
When using Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), or any other cloud service provider, security and compliance is a shared responsibility between the cloud provider and the customer. You as the customer are responsible for configuring and using cloud services in a way that complies with the applicable directives contained within SOC 2.
DivvyCloud enables you to automate security and compliance with SOC 2. DivvyCloud provides dozens of out-of-the-box policies as part of our SOC 2 compliance pack that map back to specific directives within SOC 2. For example, DivvyCloud’s policy “Storage Container Exposed To The Public” supports compliance with the “C1.2, C1.3, C1.7, and CC5.6” directives in SOC 2. You can immediately use the SOC 2 compliance pack to identify and remediate policy violations in real time.