Close

Shujinko debuts free SOC 2 audit prep software

Shujinko, which makes automated enterprise compliance solutions, has made its SOC 2 audit preparation and readiness portion of its AuditX software available for free.

The software automates evidence collection and mapping to simplify the audit preparation process.

AuditX works across multiple audits and compliance frameworks so auditors and companies can prepare for PCI DSS, ISO 27001, the NIST Cybersecurity Framework (CSF), NIST, the 800-53, IT General Control sets common to SOC 1 and SOX, and the Federal Risk and Authorization Management Program (FedRAMP).

The Securities and Exchange Commission headquarters in Washington, D.C.

Joshua Roberts/Bloomberg

“Every auditor that has to struggle to collate and correlate evidence wishes they could streamline the audit process,” said Scott Schwann, Shujinko CEO, in a statement. “That’s exactly what AuditX does — and much more — allowing companies and firms alike to get through more audits, more quickly, without sacrificing completeness and accuracy, and without being forced to rubber-stamp a certification on a pre-determined timeline.”

The goal of automating the audit is to help firms improve the certification process, ensure time and budget accuracy, and address an increased workload. The challenge is in creating automation powerful enough for auditors, but simple enough for less sophisticated clients.

AuditX gathers, organizes and tags evidence with the goal of improving clarity, and provides metadata and timestamps. Evidence is automatically mapped to applicable controls, and crosswalked across different frameworks.

Companies can release evidence to the audit team as they go, and the software captures all notes, queries and context to improve knowledge sharing and continuity. AuditX makes audit progress visible for both the auditor and client, with the idea of reducing back-and-forth progress updates between the two.

The free SOC 2 framework is available on the Shujinko.io home page.