Dive into the reasons a CEO should use Work.software to communicate vision,
Introducing Work.software's SOC 2 Framework
Work.software’s GRC platform is designed to address the manual processes of the SOC 2 audit, replacing the inefficient ...
Work.software’s GRC platform is designed to address the manual processes of the SOC 2 audit, replacing the inefficient and ineffective ways to capture information through docs, spreadsheets, and screenshots.
Our SOC 2 framework addresses the manual Criteria that automation platforms do not provide. We prepare and organize all of the meetings, events, and checklists - when they happened; how long they took; who was in attendance; what agenda items were covered; and which ones were assigned to team members; what items were reviewed and signed within those meetings; and finally, the actual minutes are compiled and emailed to all attendees right after the meeting concludes and are organized by each mapped control for export.
Work.software provides pre-populated agenda items for all your SOC 2meetings so that you have an initial starting point. All can be edited, augmented by other agenda items or deleted. You can also mandate specific agenda items that can not be removed!
Pre-populated tasks and the same parameters as above are utilized for our Checklists too and can be shared with specific or all employees. Checklists can have due dates assigned or actual meetings created from them.
Each meeting template and checklist is mapped to specific Criteria and Controls, which also can be adjusted if your auditors would prescribe more Criteria and Controls. Anything mapped corresponds to a particular digital folder, so when you click to download your audit, each meeting or checklist will be saved to the specific control folder or folders within the appropriate criteria.
Work.software covers 22 criteria within the Security Trust Category, and we will complement any automated SOC 2 program you may be using. In addition, your auditors will be granted access to the platform and can download evidence at any point within the audit period, keeping your audit up to date and moving forward.