SlideShare a Scribd company logo

BKMSH Basics of SOC II

Download as PPTX, PDF
M
MojoFinancial

Service Organization Control (SOC) reports allow outsourcing companies to communicate their compliance with security standards and industry best practices to clients. SOC reports provide assurance about the controls in place to protect clients' non-financial data and demonstrate that controls are working effectively. There are two types of SOC II reports - Type I assesses the appropriateness of controls, while Type II verifies the effectiveness of controls over time. SOC II reports benefit users by allowing them to thoroughly evaluate a service provider's security, but may require additional reports from subcontractors or not disclose full details.

Business
1 of 10
Download to read offline
1
2
3
4
5
6
7
8
9
10
Service Organization Control Series Part Two Basics of SOC II
Whatis Service Organization Control? Service Organization Control practices relate to a world of privacy breaches and fraud, where Service Organization Control have come under the scrutiny of the government to ensure the confidentiality and integrity of user entities’ sensitive data. 2
Whatdoes Service Organization Controldo? Service Organization Control allows outsourcing tasks or an entire function, which can undeniably help a company to operate more efficiently and profitably. 3
Why do you need SOC? 4 • You will communicate to clients and prospects your compliance with standards and industry best practices. • You create a level playing field with your competitors. • Your clients expect it.
Importance of SOC reports 5 • Presents the client's significant non-financial data • Demonstrates Service Organization is serious on maintaining the security & confidentiality of client’s data • Shows whether or not the internal controls are working effectively • Provides further validity of the financial statement
Scopeof SOCIIreports • SOC II reports cover the broadest range of information and assurance about controls • Uses predefined gauges in Trust Service Principles, Criteria and Illustrations, and prerequisites and guidance in AT Section 101, Attest Engagements 6
Types of SOC II reports 7 • A SOC II Type I report covers appropriateness of the controls • A SOC II Type II report examines and verifies efficacy of the controls • SOC II Type II utilizes professional standards, AICPA publications in relation to SOC framework, Extent and subject matter, & created for Intended users
Elements of SOC II reports 8 • Description of the Service Organization’s system • Service auditor’s report that expresses auditor’s opinion • Auditor’s test of controls and its outcome • Efficacy of the controls
Benefits and drawbacks of SOC II reports 9 • SOC II reports will let their readers examine and evaluate the service provider more thoroughly • Users may have to gather or acquire extra reports from trusted subservience providers • Service providers may not be inclined to disclose the reports on detail
Goodfortuneiswhat happenswhen opportunitymeets withplanning. - ThomasAlvaEdison 10 BKM Sowan Horan, LLP 15301 Dallas Parkway, Suite 960 Dallas, Texas 75001 Phone: 214-545-3965 Fax: 214-545-3966 www.bkmsh.com For more information about Basics of SOC II, please visit: http://bit.ly/BKMSH-Basics-of-SOC-2

More Related Content

PPTX
BKMSH Basics of SOC III
MojoFinancial
 
PPTX
BKMSH Basics of SOC III
MojoFinancial
 
PPTX
information system and computers
9535814851
 
PPTX
Auditor Reporting on Controls at Service Organizations
University of Waterloo
 
PPTX
Audit clauses in IT agreements
Richard Austin
 
PDF
Planning for a new Service Organization Control (SOC) report
Jay Crossland
 
PPTX
Relying on the Third Party
sabrina_maeng
 
PDF
Which SOC Report Do I need?
VISTA InfoSec
 
BKMSH Basics of SOC III
MojoFinancial
 
BKMSH Basics of SOC III
MojoFinancial
 
information system and computers
9535814851
 
Auditor Reporting on Controls at Service Organizations
University of Waterloo
 
Audit clauses in IT agreements
Richard Austin
 
Planning for a new Service Organization Control (SOC) report
Jay Crossland
 
Relying on the Third Party
sabrina_maeng
 
Which SOC Report Do I need?
VISTA InfoSec
 

What's hot (9)

PPTX
Statement on Auditing Standards presentation
Dominique Nichols
 
PPTX
Soc 2 attestation or ISO 27001 certification - Which is better for organization
VISTA InfoSec
 
PPTX
Achieving SSAE 16 Certification
Gary Pennington
 
PPT
Sas 70 Readiness
mpotorti
 
PDF
Audit
SudanPudasaini1
 
PPTX
Producer Platform
hanumansinha
 
PPTX
How Can You Obtain Assurance around Financial Information Posted on a Website?
Tia Tes
 
PDF
SSAE 16 Transitions Overview
Jeffrey Paulette
 
PDF
Customer onboarding
Intense Technologies Limited
 
Statement on Auditing Standards presentation
Dominique Nichols
 
Soc 2 attestation or ISO 27001 certification - Which is better for organization
VISTA InfoSec
 
Achieving SSAE 16 Certification
Gary Pennington
 
Sas 70 Readiness
mpotorti
 
Audit
SudanPudasaini1
 
Producer Platform
hanumansinha
 
How Can You Obtain Assurance around Financial Information Posted on a Website?
Tia Tes
 
SSAE 16 Transitions Overview
Jeffrey Paulette
 
Customer onboarding
Intense Technologies Limited
 
Ad

Viewers also liked (17)

PDF
Денис Гурський
SmartLviv
 
PDF
Philippeserra - Star Wars Fan Philippe Serra
Philippe Serra
 
PDF
An Enhanced Approach of Sensitive Information Hiding
ijsrd.com
 
PPTX
Unit one
wesleerogman
 
PDF
Ipotesi di modernizzazione del segmento Horeca
febo leondini
 
PPTX
McRoberts sept 2015 B
Gordon Powell
 
PDF
Review of Productivity improvement by implementing automation In manufacturin...
ijsrd.com
 
PDF
Ziko prezentation 800-1500000
Sysoi
 
ODP
Franklin ingles
franklin_G
 
PDF
Instagram
AlexisVarndell9
 
PPTX
Presentatie BlueGives kennissessie september 2015
BlueGives Community
 
PDF
2015 09-20 Denver Gold Forum Presentation
auricometals
 
PPTX
Storytelling & Email marketing
Ruben Dimmendaal
 
PDF
Webinar NETGEAR - ReadyRECOVER la soluzione per il backup che permette veloci...
Netgear Italia
 
PPT
My brilliant career - portfolio samples
Rebecca Rivera
 
PDF
Emf2102 ib _lecom-a-b-li aif module__v2-0__en
Charles Santos
 
DOC
Resume - nitin Solanki 1
Nitin solanki
 
Денис Гурський
SmartLviv
 
Philippeserra - Star Wars Fan Philippe Serra
Philippe Serra
 
An Enhanced Approach of Sensitive Information Hiding
ijsrd.com
 
Unit one
wesleerogman
 
Ipotesi di modernizzazione del segmento Horeca
febo leondini
 
McRoberts sept 2015 B
Gordon Powell
 
Review of Productivity improvement by implementing automation In manufacturin...
ijsrd.com
 
Ziko prezentation 800-1500000
Sysoi
 
Franklin ingles
franklin_G
 
Instagram
AlexisVarndell9
 
Presentatie BlueGives kennissessie september 2015
BlueGives Community
 
2015 09-20 Denver Gold Forum Presentation
auricometals
 
Storytelling & Email marketing
Ruben Dimmendaal
 
Webinar NETGEAR - ReadyRECOVER la soluzione per il backup che permette veloci...
Netgear Italia
 
My brilliant career - portfolio samples
Rebecca Rivera
 
Emf2102 ib _lecom-a-b-li aif module__v2-0__en
Charles Santos
 
Resume - nitin Solanki 1
Nitin solanki
 
Ad

Similar to BKMSH Basics of SOC II (20)

PDF
Navigating Compliance for MSPs From First Audit to Monetization
ControlCase
 
PPTX
SOC2loc_finalCompliance_-Checklist (2).pptx
lochanbharadwaj
 
PPTX
SOC 2 Compliance and Certification
ControlCase
 
PDF
What Is a SOC 2 Audit? Guide to Compliance & Certification
ShyamMishra72
 
PDF
Demystifying SOC 2 Certification: What You Need to Know
ShyamMishra72
 
PDF
SOC 2 Type 1 Vs. Type 2: Do You Really Need It? This Will Help You Decide!
VISTA InfoSec
 
PPTX
Service Organizational Control (SOC 2) Compliance - Kloudlearn
KloudLearn
 
PDF
SOC 2 Certification: Safeguarding Data Security and Trust in the Digital Era
ShyamMishra72
 
PPTX
Account Right SOC Services brochure.pptx
GaneshMeenakshiSunda4
 
PDF
SOC 2 and You
Schellman & Company
 
PDF
Navigating the SOC 2 Certification Scope: What's In and What's Out
ShyamMishra72
 
PPTX
BKMSH Effective Use of SOC III
MojoFinancial
 
PDF
A Comprehensive Guide to SOC 2 Compliance- How to Protect Your Data and Build...
4C Consulting Private Limited
 
PDF
Importance of soc 2 type 2 audit and iso 27001 certification
Accorp Partners
 
PPTX
Due dilligence on a cpa firm or other accounting services provdier
aBIZinaBOX Inc - CPA's - Financial Advisory, Taxation, Predictive Analytics & Technology
 
PDF
Explaining SOC 2 Compliance For Startups.pdf
socurely
 
PDF
Everything You Need to Learn About SOC 2 Compliance.pdf
nikhilahuja45612
 
DOCX
Why should I do SOC2?
VISTA InfoSec
 
PDF
Cyber Security Certifications.pdf
roguelogics
 
PDF
About SOC 2 Compliance
roguelogics
 
Navigating Compliance for MSPs From First Audit to Monetization
ControlCase
 
SOC2loc_finalCompliance_-Checklist (2).pptx
lochanbharadwaj
 
SOC 2 Compliance and Certification
ControlCase
 
What Is a SOC 2 Audit? Guide to Compliance & Certification
ShyamMishra72
 
Demystifying SOC 2 Certification: What You Need to Know
ShyamMishra72
 
SOC 2 Type 1 Vs. Type 2: Do You Really Need It? This Will Help You Decide!
VISTA InfoSec
 
Service Organizational Control (SOC 2) Compliance - Kloudlearn
KloudLearn
 
SOC 2 Certification: Safeguarding Data Security and Trust in the Digital Era
ShyamMishra72
 
Account Right SOC Services brochure.pptx
GaneshMeenakshiSunda4
 
SOC 2 and You
Schellman & Company
 
Navigating the SOC 2 Certification Scope: What's In and What's Out
ShyamMishra72
 
BKMSH Effective Use of SOC III
MojoFinancial
 
A Comprehensive Guide to SOC 2 Compliance- How to Protect Your Data and Build...
4C Consulting Private Limited
 
Importance of soc 2 type 2 audit and iso 27001 certification
Accorp Partners
 
Due dilligence on a cpa firm or other accounting services provdier
aBIZinaBOX Inc - CPA's - Financial Advisory, Taxation, Predictive Analytics & Technology
 
Explaining SOC 2 Compliance For Startups.pdf
socurely
 
Everything You Need to Learn About SOC 2 Compliance.pdf
nikhilahuja45612
 
Why should I do SOC2?
VISTA InfoSec
 
Cyber Security Certifications.pdf
roguelogics
 
About SOC 2 Compliance
roguelogics
 

More from MojoFinancial (19)

PPTX
Passthrough tax summary
MojoFinancial
 
PPTX
Individual tax summary
MojoFinancial
 
PPTX
BKMSH - Business Tax Summary
MojoFinancial
 
PPTX
Section 404 of SOX
MojoFinancial
 
PPTX
BKMSH U.S. Accounting
MojoFinancial
 
PPTX
BKMSH Understanding Balance of Stockholder's Equity
MojoFinancial
 
PPTX
BKMSH Introduction to Income Statement
MojoFinancial
 
PPTX
BKMSH Accounting Technologies
MojoFinancial
 
PPTX
BKMSH From U.S. GAAP to IGAAP: The Shift to IFRS
MojoFinancial
 
PPTX
BKMSH Getting Started with Balance Sheet
MojoFinancial
 
PPTX
BKMSH Estate Planning
MojoFinancial
 
PPTX
BKMSH Cost Segregation
MojoFinancial
 
PPTX
BKMSH Sources of Federal Taxes and How the Government Uses It
MojoFinancial
 
PPTX
BKMSH Facts and Principles in Accounting Income Taxes
MojoFinancial
 
PPTX
BKMSH Expatriation Tax
MojoFinancial
 
PPTX
BKMSH Basics of Managerial Accounting
MojoFinancial
 
PPTX
BKMSH Accounting for Financial Activities
MojoFinancial
 
PPTX
BKMSH Accounting Ethics
MojoFinancial
 
PPTX
BKMSH Basics of Forensic Accounting
MojoFinancial
 
Passthrough tax summary
MojoFinancial
 
Individual tax summary
MojoFinancial
 
BKMSH - Business Tax Summary
MojoFinancial
 
Section 404 of SOX
MojoFinancial
 
BKMSH U.S. Accounting
MojoFinancial
 
BKMSH Understanding Balance of Stockholder's Equity
MojoFinancial
 
BKMSH Introduction to Income Statement
MojoFinancial
 
BKMSH Accounting Technologies
MojoFinancial
 
BKMSH From U.S. GAAP to IGAAP: The Shift to IFRS
MojoFinancial
 
BKMSH Getting Started with Balance Sheet
MojoFinancial
 
BKMSH Estate Planning
MojoFinancial
 
BKMSH Cost Segregation
MojoFinancial
 
BKMSH Sources of Federal Taxes and How the Government Uses It
MojoFinancial
 
BKMSH Facts and Principles in Accounting Income Taxes
MojoFinancial
 
BKMSH Expatriation Tax
MojoFinancial
 
BKMSH Basics of Managerial Accounting
MojoFinancial
 
BKMSH Accounting for Financial Activities
MojoFinancial
 
BKMSH Accounting Ethics
MojoFinancial
 
BKMSH Basics of Forensic Accounting
MojoFinancial
 

Recently uploaded (20)

PDF
IFRS Notes in your pocket for study all the time
jjj81507
 
PDF
Tata consultancy services case study shri Sharda college, basrur
nityanema19
 
PDF
NewBase 12 August 2025 Energy News issue - 1812 by Khaled Al Awadi_compresse...
Khaled Al Awadi
 
PPTX
Lecture (1)-Introduction.pptx business communication
HamzaGhani10
 
PDF
Deliverable file - Regulatory guideline analysis.pdf
Quan Risk
 
PDF
Unit 1 Cost Accounting - Cost sheet
MANJU N
 
PPTX
ICG2025_ICG 6th steering committee 30-8-24.pptx
AtiarRahaman5
 
PDF
Laughter Yoga Basic Learning Workshop Manual
yeechensee
 
PPTX
Amazon (Business Studies) management studies
AbhirupVerma
 
PDF
Ôn tập tiếng anh trong kinh doanh nâng cao
thaoonguyenn2311
 
PPTX
CkgxkgxydkydyldylydlydyldlyddolydyoyyU2.pptx
DSAISUBRAHMANYAAASHR
 
DOCX
unit 1 COST ACCOUNTING AND COST SHEET
MANJU N
 
PDF
Solara Labs: Empowering Health through Innovative Nutraceutical Solutions
The lifescience magaizne
 
PPTX
Principles of Marketing, Industrial, Consumers,
efranciscaantoinette
 
DOCX
Business Management - unit 1 and 2
anithak410
 
PDF
Reconciliation AND MEMORANDUM RECONCILATION
MANJU N
 
PPTX
job Avenue by vinith.pptxvnbvnvnvbnvbnbmnbmbh
kaniece
 
PDF
Elevate Cleaning Efficiency Using Tallfly Hair Remover Roller Factory Expertise
farsookmon97766765
 
PPTX
svnfcksanfskjcsnvvjknsnvsdscnsncxasxa saccacxsax
ergvedfvef sdvsfvdvd
 
PPTX
New Microsoft PowerPoint Presentation - Copy.pptx
itsmesumedh96
 
IFRS Notes in your pocket for study all the time
jjj81507
 
Tata consultancy services case study shri Sharda college, basrur
nityanema19
 
NewBase 12 August 2025 Energy News issue - 1812 by Khaled Al Awadi_compresse...
Khaled Al Awadi
 
Lecture (1)-Introduction.pptx business communication
HamzaGhani10
 
Deliverable file - Regulatory guideline analysis.pdf
Quan Risk
 
Unit 1 Cost Accounting - Cost sheet
MANJU N
 
ICG2025_ICG 6th steering committee 30-8-24.pptx
AtiarRahaman5
 
Laughter Yoga Basic Learning Workshop Manual
yeechensee
 
Amazon (Business Studies) management studies
AbhirupVerma
 
Ôn tập tiếng anh trong kinh doanh nâng cao
thaoonguyenn2311
 
CkgxkgxydkydyldylydlydyldlyddolydyoyyU2.pptx
DSAISUBRAHMANYAAASHR
 
unit 1 COST ACCOUNTING AND COST SHEET
MANJU N
 
Solara Labs: Empowering Health through Innovative Nutraceutical Solutions
The lifescience magaizne
 
Principles of Marketing, Industrial, Consumers,
efranciscaantoinette
 
Business Management - unit 1 and 2
anithak410
 
Reconciliation AND MEMORANDUM RECONCILATION
MANJU N
 
job Avenue by vinith.pptxvnbvnvnvbnvbnbmnbmbh
kaniece
 
Elevate Cleaning Efficiency Using Tallfly Hair Remover Roller Factory Expertise
farsookmon97766765
 
svnfcksanfskjcsnvvjknsnvsdscnsncxasxa saccacxsax
ergvedfvef sdvsfvdvd
 
New Microsoft PowerPoint Presentation - Copy.pptx
itsmesumedh96
 

BKMSH Basics of SOC II

  • 1. Service Organization Control Series Part Two Basics of SOC II
  • 2. Whatis Service Organization Control? Service Organization Control practices relate to a world of privacy breaches and fraud, where Service Organization Control have come under the scrutiny of the government to ensure the confidentiality and integrity of user entities’ sensitive data. 2
  • 3. Whatdoes Service Organization Controldo? Service Organization Control allows outsourcing tasks or an entire function, which can undeniably help a company to operate more efficiently and profitably. 3
  • 4. Why do you need SOC? 4 • You will communicate to clients and prospects your compliance with standards and industry best practices. • You create a level playing field with your competitors. • Your clients expect it.
  • 5. Importance of SOC reports 5 • Presents the client's significant non-financial data • Demonstrates Service Organization is serious on maintaining the security & confidentiality of client’s data • Shows whether or not the internal controls are working effectively • Provides further validity of the financial statement
  • 6. Scopeof SOCIIreports • SOC II reports cover the broadest range of information and assurance about controls • Uses predefined gauges in Trust Service Principles, Criteria and Illustrations, and prerequisites and guidance in AT Section 101, Attest Engagements 6
  • 7. Types of SOC II reports 7 • A SOC II Type I report covers appropriateness of the controls • A SOC II Type II report examines and verifies efficacy of the controls • SOC II Type II utilizes professional standards, AICPA publications in relation to SOC framework, Extent and subject matter, & created for Intended users
  • 8. Elements of SOC II reports 8 • Description of the Service Organization’s system • Service auditor’s report that expresses auditor’s opinion • Auditor’s test of controls and its outcome • Efficacy of the controls
  • 9. Benefits and drawbacks of SOC II reports 9 • SOC II reports will let their readers examine and evaluate the service provider more thoroughly • Users may have to gather or acquire extra reports from trusted subservience providers • Service providers may not be inclined to disclose the reports on detail
  • 10. Goodfortuneiswhat happenswhen opportunitymeets withplanning. - ThomasAlvaEdison 10 BKM Sowan Horan, LLP 15301 Dallas Parkway, Suite 960 Dallas, Texas 75001 Phone: 214-545-3965 Fax: 214-545-3966 www.bkmsh.com For more information about Basics of SOC II, please visit: http://bit.ly/BKMSH-Basics-of-SOC-2