SOC 2 vs. SOC for Cybersecurity

The AICPA released a nice comparison of their SOC 2 and SOC for Cybersecurity products.  With all of the concern about data security today, the two products can be valuable.  However, their titles do not explain the differences in audience, scope, purpose, or contents.  Now there is a simple, two-page

Read More

SOC Reports for Start-ups Concerned With Privacy and Security

What is a SOC Report? Originally called Service Organization Controls reports, and now called System and Organization Controls reports, SOC reports are tests of controls provided by data security experts working at CPA firms.  They fill a need whenever a company is holding third-party data as a verified Seal of

Read More

Vendor Pre-Qualification: What we Learned From Our Own Process

While considering the steps necessary to complete the vendor prequalification process, it is important for your organization to come prepared with the right information. At Barnes Dennig, we help companies gain credibility with their vendors every day by generating CPA-provided SOC reports.  However, the tables were turned when we found

Read More