Overview
CaseBender provides comprehensive SOC2 Type II support, mapping platform capabilities to Trust Service Criteria and automating evidence collection for audit readiness. SOC2 Type II evaluates the operating effectiveness of controls over a period of time (typically 6-12 months), making continuous evidence collection essential.Trust Service Criteria Coverage
Security (Common Criteria)
| Control | Description | CaseBender Implementation |
|---|---|---|
| CC1.1-CC1.5 | Control Environment | Organization management, team structure, role definitions |
| CC2.1-CC2.3 | Communication & Information | Notification service, audit trail, dashboard reporting |
| CC3.1-CC3.4 | Risk Assessment | Vulnerability management, risk scoring, threat detection |
| CC4.1-CC4.2 | Monitoring Activities | UEBA, security monitoring, compliance dashboards |
| CC5.1-CC5.3 | Control Activities | RBAC, MFA, encryption, input validation |
| CC6.1-CC6.8 | Logical & Physical Access | Authentication, authorization, PAM, API security |
| CC7.1-CC7.5 | System Operations | Audit logging, incident response, change management |
| CC8.1 | Change Management | Version control, deployment pipelines, approval workflows |
| CC9.1-CC9.2 | Risk Mitigation | SLA management, business continuity, disaster recovery |
Availability
| Control | Description | CaseBender Implementation |
|---|---|---|
| A1.1 | Capacity Management | Resource monitoring, auto-scaling support, health checks |
| A1.2 | Recovery Procedures | Backup management, disaster recovery, data retention |
| A1.3 | Recovery Testing | Backup verification, failover testing documentation |
Confidentiality
| Control | Description | CaseBender Implementation |
|---|---|---|
| C1.1 | Confidential Information | Data classification, TLP system, access controls |
| C1.2 | Disposal of Confidential Info | Data retention policies, secure deletion, legal hold |
Evidence Collection
Automated Collectors
CaseBender includes automated evidence collectors that gather compliance artifacts without manual effort:- Access Control Evidence: User lists, role assignments, permission matrices, MFA enrollment status
- Audit Log Evidence: Authentication events, authorization decisions, data access logs, configuration changes
- Change Management Evidence: Deployment history, code review records, approval workflows
- Encryption Evidence: Encryption configuration, key rotation history, TLS certificate status
- Monitoring Evidence: Alert history, incident response records, UEBA anomaly reports
Collection Schedule
| Evidence Type | Frequency | Retention |
|---|---|---|
| Access reviews | Quarterly | 3 years |
| Audit log samples | Monthly | 3 years |
| Configuration snapshots | Monthly | 3 years |
| Vulnerability scans | Weekly | 3 years |
| Penetration test results | Annually | 3 years |
| Training records | Quarterly | 3 years |
Evidence Review Workflow
- Collection: Automated collectors gather evidence on schedule
- Review: Compliance team reviews collected evidence for completeness
- Approval: Evidence is approved and tagged with the relevant control
- Storage: Approved evidence is stored with tamper-evident integrity protection
- Retrieval: Evidence is readily available for auditor review
Audit Period Management
Audit Periods
- Define audit periods with start and end dates
- Track evidence collection progress per period
- Monitor control effectiveness across the audit window
- Generate period-specific compliance reports
Gap Analysis
CaseBender identifies gaps in your SOC2 compliance:- Controls without sufficient evidence
- Controls with outdated evidence
- Controls that have not been tested within the required timeframe
- New controls introduced by TSC updates that need implementation
Attestation Management
- Track attestation status per control
- Record control owner attestations
- Manage exception and remediation workflows
- Generate attestation reports for auditors
Reporting
Audit Reports
Generate comprehensive reports for your auditors:- Control Matrix: Complete mapping of TSC controls to CaseBender implementations
- Evidence Package: Bundled evidence artifacts organized by control
- Gap Report: Outstanding gaps with remediation plans and timelines
- Testing Results: Control test results with pass/fail status and evidence
Continuous Monitoring
Between formal audits, CaseBender provides continuous compliance monitoring:- Real-time compliance score tracking
- Alert on control degradation
- Automated evidence collection ensures no gaps accumulate
- Dashboard showing audit readiness at any point in time
Related Documentation
- Compliance Overview — All supported frameworks
- Audit Logging — The audit trail powering SOC2 evidence
- Access Control — RBAC and PAM controls