Contact Us

What is SOC 2?

Security Leadership

What Is SOC 2? The Plain-English Guide for Business Leaders

SOC 2 is the security standard your enterprise clients are asking about. Here’s what it means, what it costs, and how long it takes.

Get Expert Advice

Common Misconceptions

The most common misconceptions about this role:

  • A client has asked for your SOC 2 report.
  • Your sales team is losing deals because you can’t answer security questionnaires.
  • You don’t know where to start.

Our Methodology

The SOC 2 Readiness Roadmap: 5 stages from zero to report in 6 to 12 months.

What Starkhorn Brings

Daniel Jacobs: 20+ years in technology and security, 15+ of them in leadership roles. VetPartners (BC Partners, GBP1.2bn), Jardine Motors Group (GBP2bn). Published author. PRINCE2, ITIL, IIM Full Member. ISO 27001 and SOC 2 advisory. Link to the ISO 27001/SOC 2 readiness assessment tool.

Starkhorn does not subcontract or use associate networks. You work directly with Daniel Jacobs from the first conversation through to delivery.

Who This Is For

This service is designed for:

  • B2B technology
  • and professional services businesses with enterprise clients

This is not the right fit for: Businesses without a B2B security obligation.

Frequently Asked Questions

What is a SOC 2?

A SOC 2 is a senior technology or security leader responsible for strategy, governance, and delivery within an organisation. They set direction, manage risk, and ensure technology serves business objectives. In smaller or PE-backed businesses this role is often filled on a fractional or interim basis rather than as a full-time appointment.

What does a typical Starkhorn engagement cost?

Engagements are structured as monthly retainers or fixed-term day-rate assignments. The cost depends on scope and time commitment. We are transparent about pricing from the first conversation and will give you a clear indication on the call.

What experience does Starkhorn bring?

Starkhorn is led by Daniel Jacobs, with 20+ years in technology and security, 15+ of them in leadership roles. He has served as CIO, CISO, and interim technology director for organisations including VetPartners (BC Partners-backed, GBP1.2bn) and Jardine Motors Group (GBP2bn turnover). He holds PRINCE2, ITIL Foundation, and is a Full Member of the Institute of Interim Management.

Do I need a full-time CISO or will a virtual CISO suffice?

For most SMEs and PE-backed businesses, a virtual or fractional CISO provides everything a full-time hire would at a fraction of the cost. Unless your sector requires a dedicated CISO under regulation, a virtual arrangement is almost always the smarter choice.

What is the first step to working with Starkhorn?

Book a no-obligation conversation using the link on this page. In 30 minutes we will understand your situation, tell you honestly whether we are the right fit, and outline what a first engagement would look like. There is no sales process and no pressure.

Next step

Talk to a Senior Technology Leader

Starkhorn provides fractional CIO, CISO, and interim technology leadership for growing businesses. If you would like to understand whether this kind of support makes sense for your situation, book a no-obligation conversation.

Book a Conversation

Related at Starkhorn