Ken & Co

SOC 2 Auditing

System and Organization Controls 2

What is a SOC 2 compliance audit?

SOC 2 audits provide assurance to customers, investors, and others that an organization’s controls govern the information security in their environment, and are appropriate for the purpose for which they are intended. SOC 2 certification engagements are performed under the American Institute of Certified Public Accountants (AICPA) SSAE No. 18, Service Organizations AT-C 105 and 205, and the AICPA SOC 2 Audit Guide, Reporting on an Examination of Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy. Each SOC 2 report includes an in-depth review of at least one of the AICPA Trust Services Criteria (TSC), namely security, availability, processing integrity, confidentiality, and privacy.

Do I need a Type I or Type II SOC 2 Audit?

Our team is well versed in Type I and Type II SOC 2 examinations, so we assist our clients in determining the correct type of audit needed

SOC 2 Audit Type I

SOC 2 Audit Type II

SOC 2 Audit Process

How does a SOC 2 audit engagement begin?

Our qualified auditors consult with management and others to gain a full understanding of the unique needs of each organization. With this information, our auditors will determine which Trust Services Criteria (TSC) are needed for a thorough SOC 2 examination.

How will the audit affect our workplace environment?

It is our goal to provide the least amount of disruption to an organization’s productivity, while still gathering the important data needed to provide an accurate and complete SOC 2 examination.

When are the fees and timeline presented?

Once we understand the Trust Services Criteria requirements and your organization’s system, we provide an accurate engagement fee estimate and timeline so you know what to expect and when. In this stage, we also deliver a to-do list as well as a risk and controls matrix (RCM) to expedite the auditing process. We make every effort to meet all reporting deadlines.

What are the deliverables?

Once we have completed the examination, our auditors create a thorough and professional report of their findings. Reports are delivered to each organization digitally to expedite the process of sharing the report with clients and others. Our auditors also deliver recommendations to the organization for improving their processes and internal controls, if needed, to further solidify their compliance.

How does a SOC 2 audit work?

Throughout the audit process, we take the time to understand your service commitments, system requirements, infrastructure, software, data, and support team. Depending on the organization’s needs, our auditors will conduct onsite and/or virtual interviews and examinations.

Why Choose KEN& Co CPA LLC?

We Do SOC 2 Reports All Day, Every Day

90% of our work consists of SOC 2 compliance audits. We know exactly how to get you from engagement to SOC 2 compliant quickly and accurately, improving your internal controls along the way.

Top-Notch Service

SOC 2 compliance is a rigorous and challenging process, demanding a deep knowledge of technology and regulation. At Linford & Company, we provide an experienced and responsive team with strong SOC 2 audit and compliance experience.

Partner Involvement

We take pride in providing a high level of Partner involvement with each audit examination in an effort to further solidify our commitment to quality and efficiency.

Ready for a SOC 2 Assessment?

Fill out the form and we’ll put you in touch with one of our experienced auditors. Your contact information stays with us and is only used to talk with you about your SOC 2 audit—we do not sell or share your contact information with anyone.

Request a complimentary SOC 2 Consultation