Resources

Here’s what we’re thinking about, writing about, and reading about.
We hope you find it helpful.

In the News

Compliance Doesn't Have to Disrupt Startup Agility - It Can Boost ItCompliance Doesn't Have to Disrupt Startup Agility - It Can Boost It
The word "compliance" might make startup founders shudder as they think of onerous, time-consuming processes, but it doesn't have to be that way.
READ MORE
READ MORE
Debunking compliance myths in the digital eraDebunking compliance myths in the digital era
A System and Organization Controls 2 (SOC 2) report shows how compliance can continuously improve an organization and add value.
READ MORE
READ MORE
Family Business Part 2 Wayne Elliot and Security Audits Mike Dekock Family Business Part 2 Wayne Elliot and Security Audits Mike Dekock
March 28, 2024 - Family Businesses 2 Wayne Elliott and Security Audits Mike DeKock - School for Startups Radio Entrepreneur Podcast - Learn to be a low risk entrepreneur!
READ MORE
READ MORE

Written by us

Is the auditor’s role in a SOC 2® audit just to find gaps in our system?Is the auditor’s role in a SOC 2® audit just to find gaps in our system?
During the audit process, we might identify gaps or control exceptions, but our role encompasses much more than that. 
READ MORE
READ MORE
What controls are required for SOC 2® reports?What controls are required for SOC 2® reports?
There is nuance to this question, and other well-meaning and very smart people that I respect might give a different answer. But within the volumes of literature that set the standards, the true answer is this: There are absolutely no control requirements for SOC 2 reports.
READ MORE
READ MORE

Recommended by us

ChatGPT and SecurityChatGPT and Security
Jemurai shares their ideas and research to present a balanced view on the security implications of using ChatGPT
READ MORE
READ MORE
The Truth About AuditsThe Truth About Audits
Jemurai talks about the good, bad, and ugly they see around cybersecurity audits.
READ MORE
READ MORE
ISO/IEC 27001: 2022 - Your Guide to the Updates and How to Get (and Stay) CompliantISO/IEC 27001: 2022 - Your Guide to the Updates and How to Get (and Stay) Compliant
Echelon Risk + Cyber, in this article, breaks down everything you need to know about the ISO 27001: 2022 updates.
READ MORE
READ MORE

If you have questions or content you’d like to see, email us at info@mjd.cpa.
For more information on SOC report types and usage, please visit the American Institute of Certified Public Accountant's (AICPA) website.