IMCORP Elevates its customer's confidence by safeguarding their data with a SOC 2 audit!
IMCORP partners with A-LIGN for SOC 2 Type I Report:
IMCORP is reinforcing its commitment to providing quality service to its customers by creating a Service Organization Controls 2 (SOC 2) compliance program. In May 2019, we partnered with A-Lign (a-lign.com), an industry leading Cybersecurity-focused CPA firm, to provide a SOC 2 Type I report. The audit focused on IMCORP’s policies and business practices as they relate to the Trust Service Principles of Security, Confidentiality, Integrity, and Availability.
We are happy to share this report with existing and prospective partners upon request. To ensure that we continually maintain a high-quality security regime for our customer data and company networks we have engaged A-LIGN to conduct SOC 2 Type II reports on an annual basis.
What is a SOC 2?
A SOC 2 audit, or Service Organization Control 2, is an audit of a service organization's non-financial reporting controls as they relate to the Trust Services Criteria – the security, availability, processing integrity, confidentiality, and privacy of a system.
Are SOC 2 reports required?
So what does SOC 2 require, exactly? It's considered a technical audit, but it goes beyond that: SOC 2 requires companies to establish and follow strict information security policies and procedures, encompassing the security, availability, processing, integrity, and confidentiality of customer data.
What is the difference between SOC 1 and SOC 2?
A SOC 2 report, similar to a SOC 1 report, evaluates internal controls, policies, and procedures. However, the difference is that a SOC 2 reports on controls that directly relate to the security, availability, processing integrity, confidentiality, and privacy at a service organization.
What are SOC 2 requirements?
SOC 2 compliance is a component of the American Institute of CPAs (AICPA)'s Service Organization Control reporting platform. Its goal is to make sure that systems are set up so they assure security, availability, processing integrity, confidentiality, and privacy of customer data.
SOC 2 Type 2 Definition
More specifically, SOC 2 is designed for service providers storing customer data in the cloud. It requires companies to establish and follow strict information security policies and procedures encompassing the security, availability, processing, integrity, and confidentiality of customer data.
What does a SOC 2 report cover?
A SOC 2 Type 2 report is an internal controls report capturing how a company safeguards customer data and how well those controls are operating. ... Thesereports are issued by independent third party auditors covering the principles of Security, Availability, Confidentiality, and Privacy.
View Article List