Readiness Assessment
SOC 2 · Trust Services Criteria · All Five Categories

Is your organization ready for SOC 2?

SOC 2 audits assess your controls against the AICPA Trust Services Criteria (TSC). This assessment covers all five TSC categories — Security, Availability, Processing Integrity, Confidentiality, and Privacy — and flags exactly where your gaps are.

Time required
Approximately 10 minutes
Questions
20 targeted items
Framework basis
AICPA TSC 2017 (updated)
Cost
Complimentary

What you'll get

On-screen results delivered the moment you complete the assessment.

01
Overall Readiness Score

A single headline percentage across all TSC categories, showing how close you are to audit-readiness.

02
TSC Category Breakdown

Readiness score for each of the five Trust Services Criteria so you know where to focus first.

03
Prioritized Gap List

Every control area you answered "Partially" or "No" — with specific remediation guidance for each.

04
Downloadable Report

A plain-text summary of your results to share with your team or bring to an advisor conversation.

1 Info
2 Contact
3 Assessment
4 Results

Your details

We'll send your results to this address and follow up if you'd like to talk through them.

Please complete all required fields and confirm your consent.
1 Info
2 Contact
3 Assessment
4 Results
Scope note: SOC 2 reports are issued against one or more of the five Trust Services Criteria. Security (Common Criteria) is required in every audit. The additional four categories — Availability, Processing Integrity, Confidentiality, and Privacy — are included based on the services you provide. Answer all questions; the results will reflect which categories are relevant to you.
Progress
0 / 20

SOC 2 Readiness Questions

Answer each question based on your organization's current state — not your target state.

Please answer all 20 questions before viewing your results.
1 Info
2 Contact
3 Assessment
4 Results

Your SOC 2 Readiness Results

Results for . This is an informal indication only — not a formal audit or opinion.

Readiness

Readiness by TSC Category

A ≥80% category score indicates readiness for that Trust Services Criterion.

Identified Gaps & Recommended Actions

control area(s) flagged for attention.

Next Steps

  1. This assessment provides a general indication of SOC 2 readiness. It is not a substitute for a formal gap assessment against the full AICPA Trust Services Criteria or the opinion of a licensed CPA firm.
  2. SOC 2 Type I reports attest to the design of controls at a point in time. SOC 2 Type II reports — which most enterprise buyers require — cover the operating effectiveness of controls over a minimum observation period, typically 6–12 months.
  3. Gaps identified here represent areas where controls need to be designed, documented, or strengthened before an auditor observes them. Starting remediation now reduces your audit timeline and the risk of findings.
  4. Carbide pairs an automation platform with a credentialed advisory team to close gaps, build evidence, and manage the full SOC 2 process — from scoping through auditor coordination.
Schedule an Assessment Review