DiSanto, Priest & Co. SOC Reports

At an ever increasing speed, companies are using outside Service Organizations to perform activities that are core to their business operations.  They do so to focus time, energy, and resources on those activities that are central to their long term success.  However, with the need to outsource comes an equally important need for more trust and transparency with the outsourced service company’s operations, processes and results.  Customers need assurance that Service Organizations can perform as advertised, deliver what was promised, and continue to meet established expectations, year in and year out.  Management within an organization that has chosen to outsource want their Service Organizations to provide assurance over a range of general and industry specific concerns:

  • Security
  • Availability
  • Confidentiality
  • Processing Integrity
  • Privacy

At DiSanto, Priest & Company, We Offer:

  • Service Organization Control (SOC 1) Report No.1 (formerly SAS No. 70)
    • Examines internal controls at a service organization that impact user entity’s controls over financial reporting
  • Service Organization Control (SOC 2) Report No. 2
    • Examines the internal controls at a service organization with respect to the trust service principles; Security, Availability, Confidentiality, Processing Integrity and Privacy
  • Service Organization Control (SOC 3) Report No. 3
    • Involves the same procedures as a SOC 2 examination without all of the details which allows the report to be more widely distributed, and most often used as a marketing tool

DiSanto, Priest & Co. performs the following Third-Party Assurance (Service Organization Control – SOC) reporting services:

  • Financial reporting controls
  • Data security
  • Privacy
  • Regulatory compliance
  • Service Level Agreements
  • State and Federal Information Security laws

A Tailored Approach

At DiSanto, Priest & Co. we understand Service Organizations and their client base. Together, we work to provide a solution that can save considerable time, money and effort.  We start by first determining if your organization needs a SOC report, and then provide a solution that most closely aligns with strategic and project goals.

Our tailored approach to providing these specific assurance services make it possible for you to approach both existing and prospective customers with confidence and to convey trust and transparency.  If you must address subject matter that does not appear satisfied by any of the Service Organization Control (SOC) reports, a customized attestation report using another AIPCA attestation standard may be the missing piece to the puzzle.  DiSanto, Priest & Co. can help you find that missing piece.

Learn more about how a SOC report will benefit your company below, or contact us for a free consultation.


  • This field is for validation purposes and should be left unchanged.