Tugboat Logic Jeopardy!!

SOCit2Me

Frameworks

The Product

System Roles

The Tugboat Journey

100

When it comes to SOC2, it's a best practice to go after this when it's your first time.

What is a Type 1?

100

The international standard for information security.

What is ISO27001?

100

The 2 benefits of the Tugboat Logic Chrome Extension.

What is Evidence Collection and Security Questionnaires?

100

My role only allows me to read policies.

What is an Employee?

100

The organization that purchased Tugboat Logic in September 2021.

What is OneTrust?

200

This Trust Service Criteria is mandatory in every SOC2 audit.

What is Security?

200

Required compliance around protecting consumer data if you sell to customers with operations in Europe.

What is GDPR?

200

This module automatically links the activities you take to help reduce the likelihood and impact of negative scenarios occurring.

What is the Risk Assessment module/Risk Register?

200

The only role type that can assign.

What is an Admin?

200

The city Tugboat Logic was founded in.

Where is Calgary?

300

This requirement becomes Section 3 of your SOC 2 report.

What is a System Description?

300

Required privacy, breach and security controls that are needed if you deal with health information

What is HIPAA Compliance?

300

The place to find a summary of observations, non-conformities and opportunities from your Audit.

What is Audit Findings?

300

"I'm a key stakeholder but cannot export or create projects."

What is a contributor?

300

The 2 certifications that Tugboat Logic has that help prove the strength and trust of our security posture.

What is SOC2 and ISO27001?

400

The optional Trust Service Criteria with the most Controls.

What is Processing Integrity?

400

What you need to do annually for the next 2 years after getting ISO27001 certified.

What is a surveillance audit?

400

This export provides proof of your security controls and a badge you can add to your website.

What is the Attestation Report?

400

The absolute highest role type in the platform.

What is the Account Owner?

400

The year Tugboat Logic launched.

What is 2017?

500

SOC2 controls are not prescriptive, but you still need to follow these.

What are the COSO Principles?

500

The framework that requires an auditor depending on the number of annual transactions.

What is PCI DSS?

500

Enabling this will update control statuses for you if you focus on the associated evidence tasks.

What is Control Automation?

500

The role I should grant if my user is only managing my applications and technology

Technology Coordinator (Onboarding and Offboarding)

500

The number of granted patents that Tugboat Logic has.

What is 3?