Which of the following is NOT a SOC 2 trust service criterion?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the CEBS GBA/RPA Course 3 Exam. Access interactive quizzes, flashcards, and questions with explanations to boost your confidence and pass on the first try!

Multiple Choice

Which of the following is NOT a SOC 2 trust service criterion?

Explanation:
The SOC 2 framework uses five trust service criteria: security, availability, processing integrity, confidentiality, and privacy. Data backup is an important control activity that supports continuity and recovery, but it is not itself one of the five criteria. It helps meet the criterion of availability by enabling restoration after an interruption, yet the criteria themselves are the five areas listed. So data backup is not a dedicated trust service criterion, which is why it’s the correct choice.

The SOC 2 framework uses five trust service criteria: security, availability, processing integrity, confidentiality, and privacy. Data backup is an important control activity that supports continuity and recovery, but it is not itself one of the five criteria. It helps meet the criterion of availability by enabling restoration after an interruption, yet the criteria themselves are the five areas listed. So data backup is not a dedicated trust service criterion, which is why it’s the correct choice.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy