SOC2 CC6.6 Made Easy: Automating Logical Access Evidence
Your SOC2 audit window opens in three months. Your DMARC policy is p=none. Your auditor is going to flag it.
Not because p=none is wrong as a starting point — it's the standard way to begin DMARC roll
zerohook.hashnode.dev13 min read