KnowBe4 has announced that the KnowBe4 Compliance Manager is now SOC2 Type 1 certified, after a rigorous auditing process.
SOC2 Type 1 is an overview of an organization’s controls. It defines criteria for managing customer data based on five trust service principles including security, availability, processing integrity, confidentiality and privacy.
The KnowBe4 Compliance Manager has evolved into a comprehensive governance, risk and compliance platform. The KCM risk management workflow is simple: identify risks, respond to them and monitor them.
The KCM risk workflow is based on the NIST 800-30 framework and integrates with compliance features by allowing compliance or audit gaps to be escalated to the risk register. It identifies, assesses and monitors risk as well as gaps within organizations’ security programs.