How many controls does SOC for Cybersecurity have?

SOC for Cybersecurity contains 16 controls organized across 6 domains.

Where does SOC for Cybersecurity apply?

SOC for Cybersecurity is applicable in United States (AICPA). Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does SOC for Cybersecurity map to?

SOC for Cybersecurity has control-to-control mappings with 176 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with SOC for Cybersecurity compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

SOC for Cybersecurity — Cybersecurity Risk Management Examination

SOC for Cybersecurity, introduced by the AICPA in 2017, provides a framework for reporting on an organisation's cybersecurity risk management programme. Unlike SOC 2 (which focuses on service organisations), SOC for Cybersecurity is designed for any organisation to communicate about its cybersecurity efforts.

Domains

Trust Services Criteria — Confidentiality

Trust Services Criteria — Availability

Trust Services Criteria — Security

Description Criteria — Cybersecurity Controls

Description Criteria — Cybersecurity Risk Governance

Frequently Asked Questions

Map SOC for Cybersecurity — Cybersecurity Risk Management Examination to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform