When it comes to evaluating the Security, Availability, Processing Integrity, and Confidentiality (Privacy) at a service organization, the SSAE-16 SOC-2 Type 2 report on controls is used to assess compliance and identify critical oversights.
A variety of users and stakeholders- from customers to business partners to directors- use these reports to evaluate and understand internal control at a service organization. Reports are conducted based on criteria outlined in the AICPA Guide: Reporting on Controls at a Service Organizations Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy and can be used to inform affiliates with a broad understanding of internal operations such as:
- Oversight of the organization
- Vendor management program
- Internal corporate governance and risk management processes
- Regulatory oversight
Global IP Networks has been audited for both Type 1 (suitability of the design of controls) and Type 2 (the operating effectiveness of those controls), and declared compliant for SAS-70 and SOC-2 audit since 2009. Book a tour of our Dallas or Plano, TX facilities to get an up close look at the same equipment and infrastructure our hundreds of other clients rely on each and every day.
Need help with IT and don’t know where to go?
Let’s start by setting up a conversation and we’ll go from there.