Laika’s Blog
As a SaaS company working to protect our customers through compliance, we knew it was time to practice what we preach and showcase our best practices to pass our SOC 2 Type 1. We are happy to announce that we passed our audit with flying colors!
Learn more
Defined by the AICPA as the first part of the Service Organization Control series, SOC 1 addresses internal controls around financial reporting. SOC 1, 2, and 3 all follow the Statement on Standards for Attestation Engagements (SSAE 18).
While it can be difficult to pin down a definitive cost for any compliance certification, ISO 27001 is particularly variable. Our experts recommend starting your compliance journey early, so your company can avoid the accrued costs associated with pushing off ISO 27001.
It’s time to get ISO 27001 certified! You’ve spent time carefully designing your ISMS, defined the scope of your program, and implemented controls to satisfy the standard’s requirements. You’ve executed risk assessments and an internal audit. Whew. Now, let’s make it official.
As a prescriptive regulatory framework, ISO 27001 lays out exactly what controls need to be implemented and functioning for a certification. We’ll cover how to implement them, execute an internal audit, and prepare for the external audit resulting in certification.
We left off our ISO 27001 series with the completion of a gap analysis. The scoping and gap analysis directs your compliance team to the requirements and controls that need implementation. That’s what we’ll cover in this post.
It’s time to talk about ISO 27001 certification. As the international standard for information security and data privacy, ISO 27001 applies to organizations of any size, type, or industry.
With on-demand guidance from Laika’s compliance architects, Cinchy received an ISO 27001 and SOC 2 Type 2 report. We spoke with Saskia Bec, Information Security Analyst at Cinchy, about how seamless their experience was with Laika.
If you’re being asked about your information security, you need to get compliant with SOC 2 or ISO 27001. If your customer or employee base is international, ISO 27001 is for you. We recommend that businesses pursue an ISO 27001 certification when going after deals internationally. It’s likely your customers will ask you to get certified, and it’s best to get ahead of the game.
If you’re like your competitors, it’s time to factor compliance into your 2021 budget. For most tech companies, that means getting and staying SOC 2 compliant. But taking on SOC 2 can be complicated and expensive unless you plan it correctly.