SOC 2 Essentials: Planning For Your First Audit

We got sick of reading vendor articles with vague advice. So we wrote our own practical guide to start SOC 2.

Webinar Banner_resized

Speed up your SOC2 prep with strongDM

  • Enforce Access Control Policies
  • Log every permission change for every database & server
  • Log every query, ssh command across every environment


Step 1: Download Free SOC 2 Policy Templates

Stop writing policies from scratch. Compliance experts from strongDM, Splunk, Yext, and Braze share their own open source templates that are easy to edit in markdown and include best practices for organizational controls.

– Opensource and 100% free

– 30 policy templates

– Dashboard to create tickets and assign tasks via Jira integration

– Define delivery dates and project timeline

Download eBook

Everything I Wish I'd Known Before Starting SOC 2

  • How much does SOC 2 cost?
  • Who should participate in SOC 2 planning?
  • What is a realistic timeline to schedule SOC 2?

Screen Shot 2018-10-02 at 7.38.25 PM

Step 2: Swap Notes With Peers

Join a community of fellow startups pursuing SOC 2. Ask peers or take part in exclusive Q&As with compliance experts every week.

– Need advice on a policy?

– Looking for feedback on an auditor?

– Sanity check on vendor pricing?

Want a crash course to prepare for SOC2?

Sign up to receive a weekly email to guide you through budgeting, building your SOC2 team, and more...

STEP 3: Enroll in our SOC 2 Tutorial

We took notes during our own SOC 2 to help you avoid common mistakes and adopt best practices from the beginning. We turned those notes into a 2 hour course that includes:

– Downloadable SOC2 project plan?

64 Lessons

– 2 hours of content

- Downloadable SOC2 project plan

- 64 Lessons

- 2 hours of content