A SOC3 report is similar to the SOC 2 report, but has no restrictions on distribution or use. This report is a beneficial marketing tool for a service organizations, when they wish to demonstrate that they have appropriate controls in place to mitigate risks that may impact their customers. SOC 3 reports are based on joint AICPA and Canadian Institute of Chartered Accountant’s trust services principle and criteria and are available for general use and distribution. SOC 3 examinations assess service organizations against one or more Trust Services principles selected by the management of a service organization.
Reckenen’s SOC 3 services include:
SOC3 / SysTrust Examination Services:
In a SOC 3 engagement, we express our opinion on one or more of the Trust Services Principals (i.e. Security, Availability, Processing Integrity, Confidentiality, or Privacy) resulting in a SOC 3 Seal and report for general use.
SOC 3 Readiness Assessments:
In a SOC3 readiness assessment engagement, we determine the service organization’s preparedness though a formal gap analysis process.