SOC 2
The SOC 2 controls behind your domain-security answers.
The domain answers Domain Posture gives you each carry the SOC 2 Trust Services Criteria they support, stamped beside the verdict — so your auditor sees the mapping without a manual cross-walk. (Domain Posture is not a SOC 2 audit and does not replace an auditor.)
Per-control mapping
| Check | Control | Evidence |
|---|---|---|
| CC6.6 | Authoritative DNS records demonstrate domain ownership and DNS hygiene. | |
| CC6.7 | Mail-server topology is part of inbound boundary documentation. | |
| CC6.1 | TLS certificate validity is a precondition for encrypted transport. | |
| CC7.2 | TLS-RPT delivers operational telemetry on email transport failures. | |
| CC2.3 | Domain registration data documents ownership and expiry. |
The pack manifest cites the same controls per finding. See methodology v1.