Our Thoughts On

Sort by

Categories
Authors

SOC

Articles 1 - 10 of 41

AICPA Provides Guidance for COVID-19 Considerations in a SOC Examination

In late April, the AICPA published non-authoritative guidance to assist service auditors as they prepare for and perform SOC examinations in the wake of
Audit, SOC, Technology
Troy Fine | 4.17.2020

Amazon Web Services (AWS) Best Practices For a Successful SOC 2 Examination

For Software as a Service (SaaS) companies operating in Amazon Web Services’ (AWS) cloud environment, there are a number of AWS best practices that

SOC 2 + HITRUST vs. HITRUST Certified CSF reports - the Fundamentals

The System and Organization Control (SOC) 2 Type II report is performed for service companies by CPA firms to attest to the design and operating effectiveness

SOC 2 Considerations When Moving to a Remote Workforce

Has your organization recently moved to a remote workforce due to the COVID-19 pandemic? Although the extra-casual dress code and commute might be nice,

Register to receive our weekly newsletter with our most recent columns and insights.

SOC
Eric Davis | 11.7.2019

SOC Control Optimization and Efficiencies

If you currently have a SOC examination performed, how often do you or your auditors review each control to make sure they are up to date and mitigate

SOC 2 Examinations - Keys to Success

“What do you need for a SOC 2 Audit?” Prior to starting a SOC 2 examination, clients often ask us what they can do to ensure an efficient audit
SOC
Timothy Wolfgang | 3.18.2019

Five Questions to Assist With Identifying SOC Report Scope

The SOC reporting process can start with an organization’s desire to communicate to customers and potential customers that the organization’s

SOC 2 Reports: Common Control Exceptions and How to Avoid Them

In performing SOC 2 examinations, we often come across the same types of control exceptions. To assist organizations with avoiding these exceptions, we’ve

Register to receive our weekly newsletter with our most recent columns and insights.

Cybersecurity, SOC
Mark Riley | 12.10.2018

SOC 2 Examinations - What Are the Trust Services Criteria and Categories?

The 2017 Trust Services Criteria (TSC), which superseded the 2016 Trust Services Principles and Criteria (TSPC), serves as the control criteria for attestation
SOC
Timothy Wolfgang | 11.5.2018

How to Decide if a Type 1 or Type 2 SOC Report is Right for Your Organization

In a previous article, we described the differences between SOC 1 reports and SOC 2 reports. Once an organization decides to pursue a SOC 1 or SOC 2 report,

Register to receive our weekly newsletter with our most recent columns and insights.