Introduction to SOC for Service Organizations Reporting

Overview

New to SOC reporting?

Get ready to gain an understanding of system and organization control reporting guidance and common practice issues that will provide you with the foundational knowledge to effectively perform SOC for service organizations examinations.

Authored and instructed by Patrick Morin, this CPE course offers guidance on how to provide attestation services related to the effectiveness of controls at a service organization that affects clients' internal control over financial reporting (SOC 1r) and controls at a service organization related to information privacy, security, confidentiality, availability, and processing integrity (SOC 2r and SOC 3r).

This course covers Trust Services Criteria, SSAE No. 18, and pertinent guidance in the SOC 1 and SOC 2 guides.

Complete this course to enhance audit quality by recognizing, preventing, and addressing common peer review findings in SOC examinations.

Learning Objectives

• Recall key information related to SOC for service organizations examinations.
• Differentiate between SOC 1, SOC 2, and SOC 3 reports.
• Identify the guidance that is relevant and applicable to SOC 1, SOC 2, and SOC 3 reporting engagements.

Highlights

Key Topics

• Purposes of SOC 1r, SOC 2r, and SOC 3r reports
• Differences between the reports and their intended users
• Standards that are relevant and applicable to SOC 1, SOC 2, and SOC 3 reports - Common peer review findings related to SOC engagements

Prerequisites

None

Designed For

Who Will Benefit

Service auditors, service organization management, financial statement auditors, internal auditors, and entities that outsource functions to service organizations