In an ongoing effort to provide service organizations with a means of communicating the security of their internal controls to customers, recent changes to the 2017 Trust Services Criteria are designed to align with the Committee of Sponsoring Organizations of the Treadway Commission (COSO) framework and promote best practices.
Companies that currently issue an annual System and Organization Controls (SOC) 2 report—or that plan to issue a SOC 2 report in the near future—need to be aware of the changes. They’re effective for any SOC 2 reports issued after December 15, 2018.
In our webcast, we’ll cover SOC 2 changes and focus on areas where service organizations can expand their controls to better meet the SOC 2 criteria. We’ll also discuss methods for approaching the following:
- Performing a risk assessment
- Evaluating vendors and service providers
- Successfully assessing fraud
- Strengthening your company’s internal controls