The Biggest difference between SAS70 and SOC2/3 One of the biggest differences between an old SAS70 report and a new SOC 2/3 report is that management of the service organization cannot decide which controls they will test. Service organizations can select which criteria to evaluate (security, availability, confidentiality, processing integrity or privacy), but they must…
The ABCs of Cloud Compliance
Posted on