This year, I had the opportunity to attend the AICPA’s Service Organization Controls (SOC) School. The two-and-a-half-day training was attended by individuals from all over the United States with varying levels of SOC examination experience. Attendees included professionals in industry, as well as practitioners who perform SOC examinations. The course reinforced the fundamental concepts and requirements for performing SOC 1 engagements and facilitated discussion among the participants regarding lessons learned and challenges faced from service organizations and service auditors. The course also allowed participants to gain deeper insights into SOC 2 examinations, scenarios for service organizations to select the relevant trust service principles, case studies for preparing SOC 2 reports and upcoming changes to the trust services principles.
Overall, I found the course to be a worthwhile investment that allowed me to gain valuable insight into what others are doing in performing SOC examinations and to share collective experiences. While a lot of the content that was covered is available within the SOC guides published by the AICPA, facilitated discussion by the instructors and participants was helpful, and it provided some key takeaways to bring back to Schneider Downs’ SOC practice. The course reinforced the approach that our practice uses in conducting these examinations.
Schneider Downs has a dedicated team of professionals in Pittsburgh, PA and Columbus, OH who provide SOC services. We invite you to learn more about our SOC services.
© 2013 Schneider Downs. All rights-reserved. All content on this site is property of Schneider Downs unless otherwise noted and should not be used without written permission.
This advice is not intended or written to be used for, and it cannot be used for, the purpose of avoiding any federal tax penalties that may be imposed, or for promoting, marketing or recommending to another person, any tax related matter.