We received our 2021 SOC 2 Type II attestation last week when the auditors sent us their report. SOC stands for System and Organization Controls.
A SOC 2 report uses a framework developed by the American Institute of Certified Public Accountants to audit how an organization processes, secures, makes available, and keeps confidential information from clients and other users. It is a rigorous assessment.
We renew this certification annually, undergoing an audit of our data handling practices, our security measures, and our adherence to our policies.
This rating gives regulated companies – and companies with clients in regulated industries – reassurance that our managed IT services meet their strict data security requirements.
If your organization aims to gain a major company as a client, be advised that you will probably need to answer a questionnaire from that major company asking about your security policies. One question likely will be, “Does your Managed IT Services provider maintain a SOC 2 Type II attestation?”
Also, a managed IT services provider with a Type 1 attestation has not undergone the same scrutiny and verification as someone with a Type 2 rating. The SOC 2 Type 2 rating is the regulatory – and large company – standard.
If you’d like to learn more about SOC 2 reports, visit the AICPA site.
If you are looking for a SOC 2 Type II Managed IT Services provider, give us a call. We might be just what you’re looking for!