System and Organisation Controls 2: A Guide to SOC 2 Audits Research & Papers

22 April 2025

The System and Organisation Controls (SOC) 2 framework was developed by the American Institute of CPAs (AICPA), the national organisation for Certified Public Accountants (CPAs). However, the framework is not only relevant to the USA and organisations based there.

A big driver for SOC 2 compliance in Europe is US firms looking for assurance from their European supply chain partners, making SOC 2 compliance increasingly relevant in sectors such as Defence, Health, Finance, and Technology.

In this paper, we provide a guide to SOC 2 audits, demonstrating how the SOC 2 framework aligns with established cybersecurity frameworks and regulations such as ISO 27001 and GDPR.

Download

SHA1:

CRC64:

How we can help

Navigating the complexities of System and Organisation Controls (SOC) 2 compliance can be daunting. At AMR CyberSecurity, we specialise in providing tailored cyber security consultancy services to ensure your organisation meets and exceeds the data security requirements of SOC 2.

We have partnered with a trusted AICPA-registered auditor and can therefore seamlessly manage the end-to-end process and provide attested SOC 2 reports.

Get in touch for a SOC 2 audit quote

About Us

About us

Services

Sectors

News & Insights

News & Insights

Research

Research & Papers

Careers

Contact

Registered address

AMR CyberSecurity, 3000a Parkway
Whiteley, Fareham
Hampshire, PO15 7FX
UK