The SOC1 Type 1 Attestation Engagement provides CPA Firm validation of the design of an organization's controls related to user entity commitments, usually regarding transaction data integrity when used for financial reporting. Due to the fact that the Type 1 engagement does not require testing of control implementations, this engagement can usually be completed more quickly and at a lower cost than the Type 2 engagement. Schedule a call with us to discuss scoping and timeline.

‍

The SOC1 Type 1 Attestation Engagement provides CPA Firm validation of the design of an organization's controls related to user entity commitments, usually regarding transaction data integrity when used for financial reporting. As with other Type 2 Engagements, this includes not just validation of control design but also testing of control effectiveness over a defined audit period. Schedule a call with us to discuss scoping and timeline.

‍

The SOC2 Type 1 Attestation Engagement provides CPA Firm validation of the design of an organization's controls related to the AICPA's defined Trust Service Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy. Due to the fact that the Type 1 engagement does not require testing of control implementations, this engagement can usually be completed more quickly and at a lower cost than the Type 2 engagement. Schedule a call with us to discuss scoping and timeline.

The SOC2 Type 2 is the most widely performed Cybersecurity-related AICPA Attestation Engagement performed worldwide. In addition to the procedures performed in a Type 1, this engagement includes testing of the effectiveness of controls over a defined audit period, resulting in a formal CPA opinion.

The SOC2+HIPAA provides a combined test of both the AICPA's Trust Services Criteria and also HIPAA controls into a single report. For organizations that require both HIPAA and SOC2 this is often the most efficient option both in terms of cost and time.