System and Organization Controls 2. An auditing standard that evaluates an organization controls related to security, availability, processing integrity, and confidentiality.