Y
Hacker News
new
|
ask
|
show
|
jobs
by
tracker1
1891 days ago
Don't recall for SOC2 specifically, but a lot of the time, "best practices" suggestions and the requirements weren't the same, and people codified the suggestions internally, or the reviewers/auditors would.