This is the official SOC Auditing Blog by Christofferson and Gleason CPAs LLC.
We will post information here about SOC Auditing.
What is SOC Auditing?
SOC stands for Service Organization Controls.
We perform SOC audits which involve issuing SOC reports.
SOC audits and SOC reports are relatively new.
They did not exist before June of 2011 when Statement on Standards for Attestation Engagements No. 16 (SSAE 16) issued by the American Institute of Certified Public Accountants (AICPA) became effective.
SSAE 16 effectively abolished SAS (Statement of Auditing Standards) No. 70, which has been replaced by the new regime of SOC audits.
If your company has in the past had a SAS 70 audit, you have probably by now learned about the new regime of SOC audits.
Unlike the old SAS 70 audits, SOC audits come in a variety of shapes and sizes:
We now have SOC1, SOC2, and SOC3 engagements, each of which comes in two sizes, Type 1 and Type 2.
- Mark S Gleason
September 5, 2012
www.socauditing.com
