SOC 3 Reports
What is a SOC 3 Report?
SOC 3 Trust Services Report for Service Organization: SOC 3 reports are examination engagements performed by a practitioner (CPA) in accordance with AT-C, using the predefined criteria in TSP section 100, Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy. A SOC 3 report is a general-use report that provides only the auditor’s report on whether the system achieved the trust services criteria (no description of tests and results or opinion on the description of the system are provided). SOC 3 reports can be issued on one or more of the Trust Services principles (security, availability, processing integrity, confidentiality and privacy). SOC 3 reports are general use reports.
Why Would You Pick Arnett Carbis Toothman LLP (ACT) to Perform Your SOC 3 Audit?
ACT staff have gained significant real-life and practical experience in Information Technology. Those skills include:
- Application development and programming
- Management of Information Technology staff
- Significant experience with Project Management
- Development of Policy and Procedures
- We have extensive IT audit experience, and management of multiple complex projects, while ensuring quality service.
Our specialists can also draw on the experience of our traditional audit staff who serve a wide variety of client specialties.
Arnett Carbis Toothman LLP's consulting service teams contain a wealth of experience in multiple industries. Our teams are solution driven and seek long-term solutions to the challenges facing businesses today.
The CRISC Advantage
The Certified in Risk and Information Systems Control (CRISC) credential was designed for IT and business professionals who identify and manage risks through the development, implementation and maintenance of appropriate IS controls.
For more information, contact your Arnett Carbis Toothman advisor or one of these trusted advisors.