Due Diligence and Ongoing Monitoring

  • 1.  SOC2 CUECs

    This message was posted by a user wishing to remain anonymous
    Posted 3 days ago
    This message was posted by a user wishing to remain anonymous

    In reviewing SOC2 CUECs, should you review ALL the CUECs including any additional specific criteria for availability (A), processing integrity (PI), confidentiality (C), and privacy categories (P) on the report, or just the common criteria (CC)?