SOC stands for "System and Organization Controls" and is the agreed-upon control procedure set by the American Institute of Certified Public Accountants (AICPA). These defined sets of controls are a series of standards or benchmarks designed to help measure how well a given service organization conducts and regulates its information. The training is focused on the "Do it yourself" ("DIY"") concept. The SOC DIY training series is designed to educate learners in implementing SOC.

The training will help organizations to have the in-house skill and end-to-end knowledge in deciding the type of certification, type of documentation, type of skills, and type of controls required to certify. Part VII trains the learner on how to prepare SOC Trust Service Criteria Control Documentation and how to write corporate SOC controls using suggested controls for each service criteria and category: Criteria: Security, Availability, Processing Integrity, Confidentiality, Privacy Category: Control Environment, Communication, and Information, Risk Assessment, Monitoring Activities, Control Activities, Logical and Physical Access Controls, System Operations, Change Management, Risk Mitigation, Additional Criteria for Availability, Additional Criteria for Confidentiality, Additional Criteria for Processing Integrity, Additional Criteria for Privacy You will learn the real-life example of how to write the controls.

In this course, you will be asked to read through lessons, participate in learning activities, and partake in knowledge checks designed to reinforce learning, followed by the end of the course final assessment.