At Linford & Company we perform many SOC 1 (f. SSAE 16) and SOC 2 engagements.
At Linford & Company, we fully understand that there are all sizes of companies that complete the kind of audits we do, which include SOC 1 (f. SSAE 16), SOC 2, HIPAA and royalty audits.
So, you have a current customer or client asking whether you have completed a SOC examination.
Unfortunately, not all SOC reports or SOC audit firms are created equal. Here are some tips to ensure that your SOC report and the firm performing your SOC examination is up to par. Confirm your firm is licensed – One day we received a call from one of our clients telling us that our fees […]
It is easy to feel overwhelmed by all of the terminology surrounding an audit. Here is a list of frequently used terms and their meanings:
So, you have a current customer or client asking whether you have completed an SSAE 16 examination. Now you may have some basic questions such as the following: What is an SSAE 16 audit report? A Type II SSAE 16 report is an independent report on the design and operating effectiveness of key controls at […]
Our firm has examined a wide variety of clients in a number of different industries. Considering the criticality of many client systems and networks, it is interesting that some companies neglect the basics that help ensure the security of their data. The following tips are by no means inclusive of all of the security precautions […]
Frequently there is a discussion from service organizations regarding which of these an organization should complete. Many service organizations get a significant amount of requests related to information technology controls and security. The requests come in different forms, whether it be for SAS 70 reports (changing to SSAE 16 reports after June 15, 2011), completed questionnaires, and sometimes for on-site audits by the user organizations. Some of the pros and cons of each are briefly described below.