<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1977396509252409&amp;ev=PageView&amp;noscript=1">

SUITE OF SERVICES services menu

Hamburger-menu.png
MobileSearchIcon.png

SOC EXAMINATIONS

SOC 1, SOC 2 and SOC 3 Examinations

TALK WITH A SPECIALISTRESOURCES

Upcoming Webinar
SOCratic Method: SOC 1, 2, and 3

Join us for a free webinar on February 15th as we provide a comparative analysis that will challenge common assumptions related to SOC reporting, and explain the primary differences between the three most common SOC reporting options.

REGISTER / LEARN MORE >

soc_1

SOC 1/SSAE 16 EXAMINATION

SOC 1 reports allow organizations to present a strong position to customers regarding their control environment relevant to processes that impact the client’s controls over financial reporting.

LEARN MORE
soc_2

SOC 2 EXAMINATION

A SOC 2 report is designed to meet a broad set of reporting needs about the controls at a service organization in the form of a CPA firm’s independent attestation report. SOC 2 reports are based on the Trust Services Principles and Criteria.

LEARN MORE
soc_3

SOC 3 EXAMINATION

The SOC 3 examination reports on the operational controls pertaining to the suitability of design and operating effectiveness of controls intended to meet the selected Trust Services Principles and Criteria.

LEARN MORE
soc-for-cyber-badge

SOC for Cybersecurity

In April of 2017, the AICPA introduced its cybersecurity risk management reporting framework as an essential addition to the System and Organization Controls (SOC) suite of service offerings. SOC for Cybersecurity reports include a description of your cybersecurity risk management program and a set of benchmarks that we will evaluate your program against.

LEARN MORE

READINESS ASSESSMENT

Schellman performs readiness assessments that enable your organization to assess your current control environment against the requisite control objectives or criteria. Our purpose is to provide clients with actionable intelligence about their preparedness and overall readiness to promote successful examinations.

TYPE 1 REPORT

Schellman performs “Type 1” SOC examinations when management requires a report on the service organization’s operational controls pertaining to the suitability of the design of controls intended to meet control objectives or criteria identified as of a point in time.

TYPE 2 REPORT

Schellman performs “Type 2” SOC examinations when management requires a report on the service organization’s operational controls pertaining to the suitability of the design and operating effectiveness of controls intended to meet the control objectives or criteria identified over a specific period of time.