All SOC Reports articles

  • Blog post

    Service organizations aren't sure of their assurance to third parties, poll suggests


    A Deloitte poll of 2,700 participants says 17 percent believe the amount of requests for assurance reports or compliance questionnaires are too numerous to count. Tammy Whitehouse reports.

  • Blog post

    PwC proposes SOC 2+ to dig into third-party risk


    PwC has developed a framework to add to the assurance provided by an SOC 2 report (an AICPA report focused on controls around security, processing integrity, and privacy). PwC calls it an “SOC 2+” approach, building on the SOC 2 reporting principles by allowing a more independent, standardized assessment. Tammy ...

  • Blog post

    Report Highlights New Scrutiny Around Controls at Third Parties


    Outsourced service providers are getting more attention as a possible source of risk, according to the latest research from Financial Executives International. Insight on Outsourced Service Providers, published by the Financial Executives Research Foundation, says companies are beefing up their scrutiny of outsourced service providers after implementing the 2013 COSO ...