SOC 2 vs. SOC for Cybersecurity
The AICPA released a nice comparison of their SOC 2 and SOC for Cybersecurity products. With all of the concern about data security today, the two products can be valuable. However, their titles do not explain the differences in audience, scope, purpose, or contents. Now there is a simple, two-page
SOC Reports for Start-ups Concerned With Privacy and Security
What is a SOC Report? Originally called Service Organization Controls reports, and now called System and Organization Controls reports, SOC reports are tests of controls provided by data security experts working at CPA firms. They fill a need whenever a company is holding third-party data as a verified Seal of
Vendor Pre-Qualification: What we Learned From Our Own Process
While considering the steps necessary to complete the vendor prequalification process, it is important for your organization to come prepared with the right information. At Barnes Dennig, we help companies gain credibility with their vendors every day by generating CPA-provided SOC reports. However, the tables were turned when we found
9 Best Practices to Steer Nonprofit Technology
Working with nonprofit leaders on a regular basis, the questions I get from the Executive Directors and C-suite personnel typically revolve around, “How deep in the details do I need to be for my organization?” While the answer to this question varies greatly, there are a few tips
WannaCry Ransomware Attack Encourages You to Revisit your Response Plans
As news spreads of the global WannaCry ransomware attack, those with updated Microsoft patches and those running Apple computers appear to be able to relax. The attacks seem to be hurting organizations with older Microsoft operating systems that were left unpatched. However, this is a good time to remember the
How Technology Advisory Services Usher Rapid Growth
Some companies need a helping hand during rapid growth. At times, just keeping up with customer demands can keep an IT department busy for months or years. When that happens, it may make sense to have a trusted advisor help you stop and take stock of operations. In a recent