Audits & Assurance

SOC FOR SERVICE ORGANIZATIONS AUDITS

Build Trust & Confidence

A SOC for Service Organizations report is designed to help service organizations that provide services to other entities, build trust and confidence in the service and controls performed. A SOC report can only be provided by an independent Certified Public Accountant and should be based on industry recognized audit standards and frameworks. Each type of SOC for Service Organizations report is designed to help service organizations meet specific user needs.

Why Choose Us For Your SOC Audit?

We perform SOC for Service Organizations engagements based on industry-recognized standards and frameworks. You, your clients, and the auditors of your clients will recognize the quality and thoroughness of our work.

Our Approach to SOC Audits

Throughout our SOC engagements, we pride ourselves on being proactive in keeping you informed of current project status and any matters that need attention.

Our efficient SOC 1 and SOC 2 examination approaches are designed to reduce your time commitment and minimize disruption to your staff and include four key phases: Planning, Analysis, Validation, and Reporting.

Highlighted phase activities and deliverables are as follows:

PLANNING – Develop a project charter including scope, clarity of team roles, project communication plan, target milestones, and timelines.

ANALYSIS – Develop and review process documentation, perform walkthroughs of processes, identify key controls, and document evidential matter to be utilized during the validation phase.

VALIDATION – The SOC engagement type will be a major factor in determining the goal and amount of control testing that will be completed:

  • For a Type I engagement, the testing approach is developed to validate controls are suitably designed at a specified date.
  • For a Type II engagement, the testing approach is developed to validate controls are suitably designed and are operating effectively throughout a period of time.

REPORTING – Development and delivery of a draft SOC report, completion of rigorous internal firm quality review, and project close-out meeting with the delivery of final SOC report.

Integrity Medicolegal Enterprises

Case Study

The SOC audit for Integrity Medicolegal Enterprises provides transparency to their clients and shows that adequate controls are in place for security and processing integrity.

Contact a Specialist

CPAs are regulated by and must adhere to specific professional standards established by the American Institute of Certified Public Accountants (AICPA). They are also required to follow specific guidance related to planning, executing, and supervising examination procedures.

To find out which type of SOC Report is best for your situation, contact one of our industry specialists:

Articles & News

Nearly 100 years ago, Olsen Thielen was founded on the belief that personal attention, trust, and quality service were the key elements to helping our clients succeed, and that commitment remains.  commitment to their clients and their community. 
We get this question frequently. Often the person who gets asked has little experience with SOC auditing and reporting and is concerned about responding appropriately. If your company is faced with this question, this article will help explain what you need to know.
We see many organizations requesting SOC reports from their business partners due to a corporate compliance mandate. It appears to be a default company request even though the business relationship may not fit the purpose and scope of a SOC report.

Associations

We Value Your Privacy

This site may use cookies to store information on your computer. Some are essential to make our site work and others to improve the user experience. By using this site, you consent to the placement of these cookies and accept our privacy policy.