SOC 2: System and Organization Controls Reporting

Organizations frequently form business relationships with other companies to achieve their goals, leveraging modern cloud computing and telecommunications systems to outsource tasks or functions. While these relationships can boost revenues, expand market opportunities, and reduce costs for organizations, they also introduce additional risks related to the service organization's systems, particularly concerning security, availability, confidentiality, processing integrity, and privacy of customer data.

SOC 2 reports provide assurance over these critical areas by examining a service organization's controls. The examination assesses whether the system's description is accurate, controls are designed to meet service commitments and system requirements, and in a Type 2 examination, whether these controls operate effectively over time.

Download the document:

SOC 2: System and Organization Controls Reporting

Read more

Webcast Replay Webcast Upcoming Listen Now From The Web

Technology assurance

We help clients assess, manage and remediate IT-related risks

Webcast Replay Webcast Upcoming Listen Now From The Web

The value of SOC reports in monitoring third-party risks

The proliferation of digital transformation and outsourcing increases the need for third-party assurance.

Webcast Replay Webcast Upcoming Listen Now From The Web

AI in financial reporting and audit: Navigating the new era

US survey results - Financial reporting leaders' AI expectations for their companies and external auditors.

Image of Samantha Brady

Samantha Brady

Managing Director, Technology Assurance Audit, KPMG US

Read bio

Image of Zain Shabbir

Zain Shabbir

Managing Director, Technology Assurance Audit, KPMG US

Read bio

Image of Samantha Brady

Samantha Brady

Managing Director, Technology Assurance Audit, KPMG US

Read bio

Image of Zain Shabbir

Zain Shabbir

Managing Director, Technology Assurance Audit, KPMG US

Read bio

Headline