SOC & SSAE 16 Reporting Services

Clearly articulate internal control processes and services to clients.

Today, it is common for entities to outsource certain tasks or functions to a service organization. When users of a service organization’s services (user entities) outsource these tasks and functions, many of the risks of the service organization become risks of the user entities. By engaging an independent CPA firm to examine and report on a service organization’s controls, service organizations can respond to meet the needs of their user entities and obtain an objective evaluation of the effectiveness of controls that address operations and compliance, as well as financial reporting at those user entities.

The Value of SOC Reports

In light of several prominent internal-control breakdowns, (e.g., security and privacy breaches, and frauds) and increasing regulatory focus on internal control (e.g., Sarbanes-Oxley Act, Basel II, HITECH and HIPAA), user-entity management is increasing its due diligence for prospective service organizations and governance oversight of current service organizations. Technological, regulatory and other changes have heightened the need for information and assurance that enable management to demonstrate it has addressed stakeholder concerns related to the security, availability and processing integrity of the systems a service organization uses to process user entities’ data, and the confidentiality and privacy of the information these systems process.

Examples of Service Organizations

• Software as a Service (SaaS) • Third Party Administrators (TPA)
• Application Service Providers (ASP) • Captive Providers
• Credit Card Processing Platforms • Medical Billing
• Cloud Computing | Virtualization | on demand Computing Services • Print and Mail Delivery
• Internet Service Providers (ISP) • Online Fulfillment
• Web Design and Development • Rebate Processing | Online and Mail
• Web Hosting • Transportation Services
• Social Media | Content Tagging and Aggregators • Tax Credit and Empowerment Services
• Data Center and Co-Location Providers • Payroll Services
• Managed Services • Registered Investment Advisors (RIA)

In addition, our CoalfireOne℠ platform provides organizations with the testing, documentation, reporting tools, and QSA support needed to support your SOC and SSAE-16 needs.  The easy-to-use and secure CoalfireOne platform contains advanced features that make managing your risk and compliance program much easier.

Coalfire Controls:  The Best, Most Efficient Approach

Coalfire Controls, LLC was formed to respond to the opportunities created by the new reporting standards. The Company’s primary purpose is to deliver SOC reports. Coalfire Controls, LLC is a subsidiary of Coalfire Systems, Inc. and is a fully licensed and accredited CPA firm.

Click here to learn more about Coalfire Controls, LLC.

Need help with SOC Reports? Learn how Coalfire Controls, LLC can help.