SOC 2 Services

What is the purpose of a SOC 2 audit?

Many companies find it cost-efficient to outsource certain services, such as data hosting, colocation, data processing, and Software-asa-Service (SaaS). The data that is transmitted, stored, maintained, processed and disposed by these service providers must be kept confidential, secure, private and available for use. In addition, a service provider’s system processing must be complete, accurate, timely and authorized. A SOC 2 Report ensures companies that the five Trust Service Principles of Security, Availability, Processing Integrity, Confidentiality, and Privacy are being addressed by their service organization’s controls.

Recently, the American Institute of Certified Public Accountants (AICPA) restructured the criteria for Security, Availability, Processing Integrity and Confidentiality into “Common Criteria” to eliminate redundancy, and to update the criteria based on the latest technologies and the ever-changing business environment. The Privacy principle underwent a similar revision, effective March 15, 2016.

single-img-one

What types of SOC 2 audits are available?

Similar to SOC 1 audits, R2R provides two types of SOC 2 audits for service organizations. A Type I audit examines the controls used by service organizations to address any one or all five Trust Service Principles. The audit provides assurance that controls are designed effectively to meet the desired objectives at a point in time.

A Type 2 audit includes the same information as a Type I audit, but with the additional attestation that a service organization’s controls are tested for operating effectiveness over a period of time. R2R’s SOC 2 reports provide a description of the tests we perform and the results of those tests.

Why Obtain a SOC 2 Examination?

An internal audit of your system controls can potentially be one of the most stressful processes. R2R takes the Hassle out of the audit process and provides a comprehensive report that your service organization needs in order to stay in compliance, as well as a Seal of Excellence in the audit report’s opinion letter to show that it successfully completed a SOC 2 audit. This seal can be placed on your company’s website and marketing material to show your customers that you are a trusted and reliable company.

Start the process of obtaining your SOC 2 Seal of Excellence by .