Guide: SOC 2 Reporting on an Examination of Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (AICPA) 1st Edition

The table of contents is unusable and the book is not formatted properly. For the cost of this book this doesn’t seem acceptable. The information may be required for SOC 2 however it is repetitive and not a clear plan of action. I think it could be condensed considerably. Also I work on cybersecurity and I am not seeing clear alignment with top problems that cause security breaches. I think the legal issues such as what to do in case of disagreement could be separated from the technical controls that actually stop breaches and those controls could be presented in a more measurable way or referenced more explicitly if not part of this book. That being said, if you need to be SOC 2 compliant this seems to be from the official source so you may need this book. It serves that purpose.

Very well organized with important examples.