In the SOC two Audit period: The audit period of time only commences when the many controls are in position and all features of information security are performing as intended. The business finalizes the CPA company or impartial auditors and in collaboration, they determine the beginning date and the length https://www.nathanlabsadvisory.com/blog/nathan/secure-federal-contracts-with-fisma-compliance/