How many controls does SOC 2 have?

SOC 2 contains 54 controls organized across 5 domains.

Where does SOC 2 apply?

SOC 2 is applicable in United States. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does SOC 2 map to?

SOC 2 has control-to-control mappings with 547 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with SOC 2 compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

SOC 2

Trust Service Criteria for service organizations covering security, availability, processing integrity, confidentiality, and privacy.

Domains

P - Privacy

CC - Common Criteria (Security)

C - Confidentiality

PI - Processing Integrity

A - Availability

Implementation Guides

SOC 2 Audit PreparationStep-by-step guide →

Frequently Asked Questions

Map SOC 2 to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform