DiSanto, Priest & Co.

Third Party Assurance (SOC & Cyber Security)

We Offer

  • Service Organization Control (SOC 1) Report No.1 (formerly SAS No. 70)
    • Examines internal controls at a service organization that impact user entity’s controls over financial reporting
  • Service Organization Control (SOC 2) Report No. 2
    • Examines the internal controls at a service organization with respect to the trust service principles; Security, Availability, Confidentiality, Processing Integrity and Privacy
  • Service Organization Control (SOC 3) Report No. 3
    • Involves the same procedures as a SOC 2 examination without all of the details which allows the report to be more widely distributed, and most often used as a marketing tool

We Help You

At an ever increasing speed, companies are using outside Service Organizations to perform activities that are core to their business operations.  They do so to focus time, energy, and resources on those activities that are central to their long term success.  However, with the need to outsource comes an equally important need for more trust and transparency with the outsourced service company’s operations, processes and results.  Customers need assurance that Service Organizations can perform as advertised, deliver what was promised, and continue to meet established expectations, year in and year out.  Management within an organization that has chosen to outsource want their Service Organizations to provide assurance over a range of general and industry specific concerns:

  • Security
  • Availability
  • Confidentiality
  • Processing Integrity
  • Privacy

DiSanto, Priest & Co. performs the following Third-Party Assurance (Service Organization Control – SOC) reporting services:

  • Financial reporting controls
  • Data security
  • Privacy
  • Regulatory compliance
  • Service Level Agreements
  • State and Federal Information Security laws

A Tailored Approach

At DiSanto, Priest & Co. we understand Service Organizations and their client base. Together, we work to provide a solution that can save considerable time, money and effort.  We start by first determining if your organization needs a SOC report, and then provide a solution that most closely aligns with strategic and project goals.

Our tailored approach to providing these specific assurance services make it possible for you to approach both existing and prospective customers with confidence and to convey trust and transparency.  If you must address subject matter that does not appear satisfied by any of the Service Organization Control (SOC) reports, a customized attestation report using another AIPCA attestation standard may be the missing piece to the puzzle.  DiSanto, Priest & Co. can help you find that missing piece.

GET IN TOUCH

  • This field is for validation purposes and should be left unchanged.
Related White Papers
THE INGREDIENTS IN A SOC REPORT & THE NUTRITIONAL VALUE OF YOUR SERVICE ORGANIZATION
Learn how to build an SOC report and the important details that play a role in creating it for your unique organization.
HOW TO FIND YOUR MATCHING “SOC” IN A BASKET OF WRINKLED GUIDANCE
Understand the variety and value of SOC reports and which one should be utilized for your organization.
CLARIFYING THE DIFFERENT FORMS OF SOC REPORTING
SOC 1, SOC 2, and SOC 3 reports are not the same; each serves a different purpose. This whitepaper walks you through the differences and how each can be utilized for your organization.
THE SIGNIFICANCE OF A SOC REPORT: ILLUMINATING THE CONTROLS OF YOUR SERVICE ORGANIZATION
Understand how your business operates when working with outside vendors, and why utilizing SOC reports can protect your business.
error: