SOC 1

System and Organizations Control (SOC) reports are globally recognized attestation reports that provide organizations credibility and a competitive advantage in the marketplace. SOC reports are intended to provide transparency into the internal controls operated within a service organization to enable user entities to assess and address the risks associated with that service organization. SOC 1 (SSAE 18) Reports are intended to report on the internal controls at a Service Organization that are relevant to the user entities’ internal controls over financial reporting (ICFR), providing user entities with enhanced assurance that the controls that may affect their financial statements are implemented and operating effectively.

RISCPoint’s team of compliance consultants can assist your organization from designing, selecting, and implementing controls through the completion and on-going maintenance of SOC Compliance.

• • Overview of Third-Party Reporting Compliance Process
  • Boundary review and audit scoping
  • ROI identification and justification
  • Tailored educational sessions for key stakeholders and executives
  • Development of detailed roadmap for compliance
• Gap assessments
  • Overview of Third-Party Reporting Compliance Process
  • Review of existing compliance documentation (Policies, procedures, process flows, etc.)
  • Identification of gaps in the current control implementation
  • Development of risk-ranked recommendations and future state roadmap
• Flexible Enterprise Control Framework Development
  • Identification of existing controls and the development of leading practice controls that achieve compliance with multiple third-party attestation requirements
  • Remediation Assistance

Interested in learning more, or ready to take the plunge? Get in touch with a member of our team below.