How we got SOC 2 certified in less than 6 months – and how you can too | SC Media

How we got SOC 2 certified in less than 6 months – and how you can too

March 20, 2019
  • Type 1: policies are defined and documented, and the audit is conducted at a single point in time.
  • Type 2: policies are defined and documented and are then verified by a third party over a period of time.
  • Auditability - Know exactly what code went into which environment and when.
  • Testing - Test to verify the application works as expected, every step of the way. Unit tests, integration tests, staging tests, etc.
  • Pull request reviews - Make sure the code that goes into the system was reviewed, really belongs there and is of high quality.
prestitial ad