Typically, we respond to general inquiries received through this form within two business days.
If this is urgent, please feel free to reach out to our team directly at: 301.231.6200.
We recognize that outsource service providers face growing pressure to prove the reliability of their internal controls. As organizations outsource more of their core IT and business functions, they seek more assurance regarding the risks and controls associated with these services.
Service Organization Control (SOC) Reports can help your service organization distinguish yourself against your competitors. These independent reports demonstrate your commitment to safeguarding your customers’ sensitive data. They provide peace of mind to customers and reduce requests for customer audits and questionnaires.
We’re here to help you navigate the SOC framework and select the report type most appropriate for your business. We can guide you on the most efficient path to your goals, starting with a readiness or gap assessment.
In each type of SOC audit engagement, our primary objective is to provide insights on your control environment including people, processes, and technology. We’re committed to helping you identify weaknesses before they become business risks or headline news.
Based on the SSAE 18 framework, the SOC 1 Report addresses internal controls over financial reporting.
The SOC 2 Report addresses internal controls relevant to security, availability, processing integrity, confidentiality, and privacy trust principles. A SOC 2 Report is generally a “restricted use report” and is confidentially shared with stakeholders.
The SOC for Cybersecurity Report addresses internal controls related to cybersecurity risk management program.