Glossary

SOC 2
defined.

An auditing standard from the AICPA covering controls relevant to security, availability, processing integrity, confidentiality, and privacy.

A–Z

What is SOC 2?

SOC 2 Type II is the dominant attestation for B2B SaaS. Penetration testing typically maps to Trust Services Criteria CC7.1 and CC7.2. See our SOC 2 service page.

Related terms.

Where this shows up.

See our web application penetration testing, API security testing, network penetration testing, and cloud security audit services for how we test for and defend against this class of issue.

Test for this in your stack

BOOK A FREE
scoping call.

30-minute call with an OSCP-certified engineer. Tailored proposal in 24 hours.

Book Free Scoping Call →All Services