Jessica F. McGrath · @jfmcgrath
8 followers · 18 posts · Server fosstodon.orgNever trust a Friday. Time to build out a potential control structure for a whole new #SOC2 Trust Service criteria. #compliance
ДевоПес · @devops
46 followers · 186 posts · Server twiukraine.comЗвернувся клієнт з проханням допомогти отримати сертифікацію #SOC2 або #iso27001
Самостійно такого не робили, але приймали участь декілька разів з іншими клієнтами. Сподіваюсь, зможемо домовитися з клієнтом про строки та бюджет, бо на це може зайняти 2-3 місяці у кращому випадку. Заодно переведемо його з #Azure на #AWS
Hackernoon · @hackernoon_bot
412 followers · 7535 posts · Server social.platypush.techReferenced link: https://hackernoon.com/best-practices-for-soc-2-compliance-on-aws
Discuss on https://discu.eu/q/https://hackernoon.com/best-practices-for-soc-2-compliance-on-aws
Originally posted by HackerNoon | Learn Any Technology / @hackernoon: http://nitter.platypush.tech/hackernoon/status/1654307434809159681#m
Leverage AWS best practices for SOC 2 Compliance - boost your organization's data security and meet industry standards with ease. - https://hackernoon.com/best-practices-for-soc-2-compliance-on-aws #startups #soc2
Artair Geal :trek: :bearpride: · @artair
40 followers · 61 posts · Server ohbear.wtfThe thing I love most about #SOC2 audits is explaining *other* people's mistakes. #Security #InformationTechnology
#soc2 #security #informationtechnology
jrosenberg · @jrosenberg
15 followers · 151 posts · Server mstdn-social.social.shrimpcam.pw
Commissioner Christy Goldsmith Romero, Adjusting the Sails for Cyber and Climate Resilience, Commodity Futures Trading Commission, February 10, 2023
— Available here: https://www.cftc.gov/PressRoom/SpeechesTestimony/oparomero6
#cyberrisk #cyberresilience #climaterisk #thirdpartyrisk #SOC2 #audit #internalcontrol #riskmanagement #operationalrisk #operationalresilience #financialservices #banking #regulation #CFTC #futures #swaps
#swaps #futures #cftc #regulation #banking #financialservices #operationalresilience #operationalrisk #riskmanagement #internalcontrol #audit #soc2 #thirdpartyrisk #climaterisk #cyberresilience #cyberrisk
jrosenberg · @jrosenberg
15 followers · 149 posts · Server mstdn.socialCommissioner Christy Goldsmith Romero, Adjusting the Sails for Cyber and Climate Resilience, Commodity Futures Trading Commission, February 10, 2023
— Available here: https://www.cftc.gov/PressRoom/SpeechesTestimony/oparomero6
#cyberrisk #cyberresilience #climaterisk #thirdpartyrisk #SOC2 #audit #internalcontrol #riskmanagement #operationalrisk #operationalresilience #financialservices #banking #regulation #CFTC #futures #swaps
#swaps #futures #cftc #regulation #banking #financialservices #operationalresilience #operationalrisk #riskmanagement #internalcontrol #audit #soc2 #thirdpartyrisk #climaterisk #cyberresilience #cyberrisk
Indusface · @Indusface
0 followers · 28 posts · Server infosec.exchange
Episode 5 of The #SaaSTrana #Podcast is now live! 🎙️
In this podcast, Raghu (Co-Founder, Sprinto) discusses with Venky how SaaS Startups have to upgrade their security standards significantly 🔐 to become SOC 2 compliant and the major pitfalls they should avoid.
He differentiates between SOC 1, SOC 2, & SOC 3 compliance in super-easy terms and highlights some overlapping parameters between security standards like ISO 27001, PCI DSS, HIPPA, GDPR, etc. 📝
He talks about how meeting Application Security best practices is a must-have factor for any compliance. If avoided, it can make selling products/services challenging in international markets. 🌎
Key highlights from the discussion :
- Compliance automation with Sprinto
- What are AICPA and NIST?
- SOC 2 compliance and audit procedure
- Differences between SOC 1 Vs. SOC 2 Vs. SOC 3
- What are Type 1 and Type 2 in SOC 2
- Disparities between FEDRAMP, GDPR, PCI DSS, ISO 27001, etc.
- Companies need compliance for an added trust
Listen on:
YouTube: https://youtu.be/u7KVSMCmbPI
Spotify: https://bityl.co/H27B
Apple Podcasts: https://bityl.co/H279
Amazon Music: https://bityl.co/H26x
Anchor(others): https://bityl.co/H27G
#soc2 #soc #gdpr #aicpa #iso #saasstartups #applicationsecurity #appsec #apptrana #indusface #saas #saassecurity #saasstartups
#saastrana #podcast #soc2 #soc #gdpr #aicpa #iso #saasstartups #applicationsecurity #appsec #apptrana #indusface #saas #saassecurity
mkb · @mkb
522 followers · 5601 posts · Server mastodon.social
d0pp3l6ang3r :verified: :donor: · @d0pp3l6ang3r
206 followers · 285 posts · Server infosec.exchangeQuestion for #compliance #grc pros, what do you check for in vendor #soc2 audits when you have a apps like #siem deployed as on-prem on #AWS and managed by internal #IT or #security teams?
Which of the following do you ask for and why? :
#compliance #grc #soc2 #siem #aws #security #it
DPO :pika: · @DataProtectionNerd
706 followers · 781 posts · Server mastodon.social7 myths about #SOC2 #compliance | Blog | OneTrust
https://www.onetrust.com/blog/soc-2-compliance-myths/
IAintShootinMis · @iaintshootinmis
373 followers · 701 posts · Server digitaldarkage.cc#7passwordstoknowme
1) kas8f3n(3,@d
2) hunter2
3) battery-horse-staple
4) p@$$w0rd
5) Winter2022!
6) qazwsxedc
7) 1234567890!
#7passwordstoknowme #cybersecurity #infosec #identity #iam #nist #pci #soc2
nhgeek · @nhgeek
29 followers · 190 posts · Server mastodon.socialI had a pretty cool week. My company announced our SOC 2 Type 1 report availability this week. I was in that up to my eyeballs due to prior InfoSec experience. It was a very educational experience and it surely was the forcing function I'd hoped it would be to take our program to the next level. #InfoSec #soc2
infosec-jobs.com · @infosec_jobs
1037 followers · 14436 posts · Server mastodon.socialHIRING: ISO Compliance Coordinator - Fixed Term Contract / London, England, United Kingdom - Remote https://infosec-jobs.com/J19174/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #London #England #RemoteJob #APIs #Audits #Compliance #Finance #Governance #ISMS #ISO27001 #Riskmanagement #SOC2
#infosec #infosecjobs #cybersecurity #jobsearch #hiringnow #cybercareer #london #england #remotejob #apis #audits #compliance #finance #governance #isms #iso27001 #riskmanagement #soc2
infosec-jobs.com · @infosec_jobs
1032 followers · 14432 posts · Server mastodon.socialHIRING: Security Compliance Specialist / Boston https://infosec-jobs.com/J19170/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #Boston #Audits #AWS #CISA #CISM #CISSP #Cloud #Compliance #ComputerScience #CRISC #DevOps #FedRAMP #GDPR #GitHub #Incidentresponse #ISO27001 #Jira #Monitoring #NIST #Privacy #SaaS #Securitystrategy #SOC2 #Strategy
#infosec #infosecjobs #cybersecurity #jobsearch #hiringnow #cybercareer #boston #audits #aws #cisa #cism #cissp #cloud #compliance #computerscience #crisc #devops #fedramp #gdpr #github #incidentresponse #iso27001 #jira #monitoring #nist #privacy #saas #securitystrategy #soc2 #strategy
infosec-jobs.com · @infosec_jobs
1023 followers · 14415 posts · Server mastodon.socialHIRING: IT Security Manager / London, England, United Kingdom https://infosec-jobs.com/J19097/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #London #England #UnitedKingdom #Audits #Automation #CISA #CISM #CISSP #Cloud #Compliance #GDPR #Governance #HIPAA #ISMS #ISO27001 #OpenSource #Privacy #Riskmanagement #SOC2 #Strategy
#infosec #infosecjobs #cybersecurity #jobsearch #hiringnow #cybercareer #london #england #unitedkingdom #audits #automation #cisa #cism #cissp #cloud #compliance #gdpr #governance #hipaa #isms #iso27001 #opensource #privacy #riskmanagement #soc2 #strategy
infosec-jobs.com · @infosec_jobs
1012 followers · 14387 posts · Server mastodon.socialHIRING: VP, Cybersecurity & IT / Reno, Nevada https://infosec-jobs.com/J19099/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #Reno #Nevada #Applicationsecurity #Audits #Blockchain #CASP+ #CCPA #CCSP #CIPP #CISM #CISSP #Cloud #Compliance #Finance #GDPR #Incidentresponse #Monitoring #OWASP #Pentesting #Privacy #Productsecurity #Riskmanagement #Securitystrategy #SOC2 #SOC3 #Strategy #Vulnerabilities
#infosec #infosecjobs #cybersecurity #jobsearch #hiringnow #cybercareer #reno #nevada #applicationsecurity #audits #blockchain #casp #ccpa #ccsp #CIPP #cism #cissp #cloud #compliance #finance #gdpr #incidentresponse #monitoring #owasp #pentesting #privacy #productsecurity #riskmanagement #securitystrategy #soc2 #soc3 #strategy #vulnerabilities
infosec-jobs.com · @infosec_jobs
735 followers · 14020 posts · Server mastodon.socialHIRING: Security Engineer / Helsinki, Finland https://infosec-jobs.com/J18666/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #Helsinki #Finland #Applicationsecurity #Audits #Automation #AWS #C #C++ #Cloud #Compliance #ComputerScience #Cryptography #DevOps #Fullstack #JavaScript #Kubernetes #Networksecurity #OpenSource #Pentesting #SOC2 #Splunk #TypeScript #Vulnerabilities
#infosec #infosecjobs #cybersecurity #jobsearch #hiringnow #cybercareer #helsinki #finland #applicationsecurity #audits #automation #aws #c #cloud #compliance #computerscience #cryptography #devops #fullstack #javascript #kubernetes #networksecurity #opensource #pentesting #soc2 #splunk #typescript #vulnerabilities
infosec-jobs.com · @infosec_jobs
721 followers · 13982 posts · Server mastodon.socialHIRING: Sr. DevSecOps Engineer- Remote / US - Remote https://infosec-jobs.com/J18656/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareer #RemoteJob #Analytics #Automation #AWS #Bash #Cloud #DevOps #DevSecOps #FedRAMP #ISO27001 #JavaScript #Linux #Monitoring #Python #Riskassessment #Scripting #SOC2
#infosec #infosecjobs #cybersecurity #jobsearch #hiringnow #cybercareer #remotejob #analytics #automation #aws #bash #cloud #devops #devsecops #fedramp #iso27001 #javascript #linux #monitoring #python #riskassessment #scripting #soc2
Keith Crawford :donor: · @tsudo
331 followers · 203 posts · Server infosec.exchangeMy #introduction 👋🏻
I'm Keith. I'm an Arkansas native and call Little Rock home.
I'm a GRC specialist. In a few weeks I'll be the Principal Compliance Specialist at LastPass. I've been a consultant & vCISO. I specialize in building effective security programs that auditors loved (SOC2/HITRUST). I'm also a policy wonk.
I'm a former Network Engineer and came up through Service Management.
I've been on the bird site since it was SMS only and followed a handful of #sectwits back in my Vegas/Blackhat days.
But I do way more than infosec. I'm a weather geek, a Disaster Relief volunteer, & an Arkansas Razorbacks fan. I love to go RV camping & kayaking and I'm blessed to have a wife & 2 kids.
Thankful to have found this place and keep up with old friends and make new ones.
#grc #razorbacks #arkansas #soc2 #introduction #sectwits