As a service organization, your users and their independent auditors are looking to you for assurance that your company has effective controls and safeguards in place to protect sensitive customer data. Obtaining a Service Organization Control (SOC) report will not only build trust and confidence, but also help you to gain a competitive advantage.
Dannible & McKee’s Assurance Group provides verification of the effectiveness of the controls and safeguards in place through SOC examinations. Our SOC services are performed by a highly experienced team of industry-focused auditors and IT system experts who have an in-depth understanding of the standards and are committed to performance and quality. Their extensive experience in this specialized area provides valuable benefits to service organizations.
We take a consultative approach to our SOC services, which are tailored to the unique needs of each client. Our process includes pre-assessment of your distinct objectives and requirements, as well as a readiness assessment which is designed to measure your current control environment against the requisite control objectives or criteria and provide guidance regarding the actions necessary for a successful SOC engagement.
Under the new standard, there are three different reports: SOC 1, 2 or 3. Our professionals can help you determine which report is appropriate for your organization and the impact your controls have on your customers’ financial statements. We can provide your business with a roadmap and related guidance on how to efficiently and effectively implement and transition to the new standards.
Dannible & McKee’s SOC audit readiness services include:
- Evaluation of User Organization (customer) Contracts
- Assistance in Identifying Control Objectives
- SOC Pre-Audit Gap Analysis
- SOC Readiness Assessment
- Assistance in Developing Management’s Assertions
- Identifying and Documenting Process Flows
- Assistance in Policy and Procedure Development
- System Flowcharting
SOC Readiness Assessment
Our readiness assessment consulting services are designed to be scalable and are customized to your needs and to your available resources. The key component of the readiness assessment is to assist in determining preparedness for a SOC 1, 2 (type 1 or 2) or 3 audit. The readiness assessment is a detailed analysis of the current control environment to determine which controls are in place to meet the SOC audit objectives. Through this process, we identify any weaknesses that may exist in the control environment in advance, which will allow you to remediate issues before the audit period.