Glossary
Compliance frameworks (ISO 27001, SOC 2)
Also known as: ISO 27001, SOC 2, Information security frameworks
Definition
ISO/IEC 27001 is an international standard for information security management systems (ISMS). It specifies requirements for establishing, operating, and continuously improving an ISMS and is certified by accredited bodies. SOC 2 (System and Organization Controls 2) is an AICPA examination standard that assesses service providers against the trust service criteria of security, availability, processing integrity, confidentiality, and privacy. Both frameworks are routinely required by Swiss and international enterprise customers as evidence of security maturity.
How Swiss Knowledge Hub uses this term
Swiss Knowledge Hub designs its internal controls along the principles of these frameworks. The current status of specific certifications is available on request; mentioning the frameworks here does not imply that certifications have been obtained.
Related terms
Sources
- ISO/IEC 27001:2022 — https://www.iso.org/standard/27001
- AICPA — SOC 2 — https://www.aicpa-cima.com/resources/landing/system-and-organization-controls-soc-suite-of-services
Last updated: April 22, 2026