IMCORP reinforces its commitment to its customer's confidence by safeguarding their data with a SOC 2 Type 2 audit and certification!
IMCORP is fortifying its commitment to providing quality service to its customers by continuing to further their Service Organization Controls 2 (SOC 2) compliance program.
In May of 2019 IMCORP was certified for a SOC 2 Type 1 report. In February 2020, IMCORP partnered once again with A-Lign (a-lign.com), an industry leading Cybersecurity-focused CPA firm, to provide a SOC 2 Type 2 certification. The audit focused on IMCORP’s policies and business practices as they relate to the Trust Service Principles of Security, Confidentiality, Integrity, and Availability.
To ensure that we continually maintain a high-quality security regime for our customer data and company networks we have established a plan to have these third-party reviews (SOC 2 Type 2) conducted on an annual basis. We are happy to share this report with existing and prospective partners upon request.
What is a SOC 2?
A SOC 2 audit, or Service Organization Control 2, is an audit of a service organization's non-financial reporting controls as they relate to the Trust Services Criteria – the security, availability, processing integrity, confidentiality, and privacy of a system.
What is required for a SOC 2 certification?
So what does SOC 2 require, exactly? It's considered a technical audit, but it goes beyond that: SOC 2 requires companies to establish and follow strict information security policies and procedures, encompassing the above-mentioned Trust Service Criteria
What are SOC 2 requirements?
SOC 2 compliance is a component of the American Institute of CPAs (AICPA)'s Service Organization Control reporting platform. Its goal is to make sure that systems are created to assure security, availability, processing integrity, confidentiality, and privacy of customer data.
SOC 2 Type 2 Definition
The SOC 2 is designed for service providers storing customer data in the cloud. It requires companies to establish and follow strict information security policies and procedures encompassing the Trust Services Criteria.
What does a SOC 2 report cover?
A SOC 2 Type 2 report is an internal controls report capturing how a company safeguards customer data and how well those controls are operating. These reports are issued by independent third-party auditors and cover IMCORPS policies, processes and practices involved in security, availability, processing integrity, confidentiality, and privacy of customer data.
View Article List