At Work.software, we understand the challenges that come with conducting a SOC 2 audit using manual methods such as documents, spreadsheets, and screenshots. That's why we've developed a GRC platform that streamlines the process and replaces outdated techniques.
Our SOC 2 framework takes into account the manual criteria that automation platforms don't offer. We take care of organizing meetings, events, and checklists, including details such as the date and time, attendees, agenda items, and assignments. After each meeting, we compile the minutes and email them to all participants, organized by each mapped control, ready for export.
To make things even easier, our platform comes with pre-populated agenda items for all your SOC 2 meetings. These can be edited, augmented, or deleted as needed, and you can even mandate specific items that can't be removed. The same goes for our checklists, which can be shared with selected employees and assigned due dates or linked to meetings.
Each meeting template and checklist is mapped to specific criteria and controls, which can be adjusted to meet the requirements of your auditors. Everything is organized in digital folders, so when you download your audit, each meeting and checklist will be saved to the appropriate control folder for easy access.
Work.software covers 22 criteria within the Security Trust Category, making it a complementary tool to any automated SOC 2 program you may be using. Furthermore, your auditors can be granted access to the platform and can download evidence at any time during the audit, keeping the process up-to-date and on track.