Contact

mail@gemini-theme.com
+ 001 0231 123 32

Follow

Info

All demo content is for sample purposes only, intended to represent a live site. Please use the RocketLauncher to install an equivalent of the demo, all images will be replaced with sample images.

Trusted Advisors to Businesses throughout North America

SSAE 18 SOC 1 Audit Checklist for Atlanta, Georgia Businesses

An SSAE 18 SOC 1 audit checklist is a great tool for helping ensure service organizations in the Atlanta, Georgia area – or anywhere else throughout the country – have a strong technical understanding and working knowledge of the AICPA Service Organization Control (SOC) 1 reporting option. After all, if you’re being mandated to spend thousands of dollars each year on SOC 1 SSAE 18 assessments, it’s probably a really good idea to begin with an in-depth checklist for covering all important issues before you being the actual audit process. Therefore, NDNB has provided the following SSAE 18 SOC 1 audit checklist for service organizations.

SSAE 18 SOC 1 Checklist for Atlanta, GA Businesses

Work with SOC 1 Experts: Performing SSAE 18 SOC 1 audits in an efficient, cost-effective manner and producing exceptionally high-quality reports is what NDNB does better than anyone else, so trust your compliance needs to the experts. As one of the largest metropolitan areas in North America, Atlanta, GA is a financial and technology hotspot – no question about it – requiring many businesses to undertake annual SSAE 18 SOC 1 – and SOC 2 – assessments, for which NDNB offers fixed fees for both services. There’s no denying the regulatory compliance movement – it’s big, strong, and growing larger each year – so now’s the time to hitch your wagon to the compliance experts in the Southeast, and that’s NDNB.

Assess the SOC 1 vs. SOC 2 Landscape: There’s much to be said about the SOC 1 vs. SOC 2 audit debate, but just remember that SSAE 18 SOC 1 audits are for service organizations exhibiting a true nexus to the internal controls relating to financial reporting, while SOC 2 is geared towards technology-oriented service organizations. Many service organizations are still performing SSAE 18 SOC 1 audits when they should be performing SOC 2 audits – we’re talking about data centers, managed services providers, SaaS vendors, and others.

Continue reading
  30 Hits
30 Hits

SOC 2 Standard – Type 1 & 2 Overview for Colorado Businesses

Colorado businesses seeking to become SOC 2 compliant will no doubt benefit from a brief, yet in-depth primer on essential subject matter relating to the American Institute of Certified Public Accountants (AICPA) System and Organization Control (SOC) reporting framework. Colorado’s tech sector is growing like never before, ultimately requiring businesses to perform annual compliance audits, such as SOC 2. From Denver to Boulder, Fort Collins to Colorado Springs – and all other surrounding areas – NDNB is Colorado’s leading provider of fixed-fee audit services, so take note of the following important points regarding SOC 2 compliance.

Important Points Regarding SOC 2 Compliance for Colorado Businesses

It’s about Technology: The SOC 2 Standard, which actually utilizes the little-known AT 101 professional accounting standard, allows service organizations to undertake a SOC 2 Type 1 and/or SOC 2 Type 2 assessment for evaluating one’s internal controls. Additionally, the SOC 2 standard for reporting is generally heavily geared towards service organizations in the technology arena, those such as managed services providers, data centers, software as a service (SaaS), data analytics, and many others.

While the historical SAS 70 audit was a “one size fits all approach” the new AICPA Service Organization Control (SOC) framework provides vastly different reporting options (i.e., SSAE 18 SOC 1, SOC 2, and SOC 3), and this is without question a breath of fresh air, one that was much needed. With today’s complex business models, you know have three (3) different reporting options, for which SOC 2 is gaining much recognition. Trust Service Criteria (TSC): Please note that recent updates and enhancements regarding the SOC 2 standard includes revisions to the Trust Services Criteria (TSC). More specifically, for reporting periods on or after December 15, 2014, the new TSC framework is to be utilized, which consists of the following 7 general areas:

Continue reading
  60 Hits
60 Hits

SOC 2 Compliance Overview for Atlanta, GA – Fixed Fees

SOC 2 Compliance - Atlanta, GA – Fixed Fees

Call the proven and trusted Atlanta SOC 2 compliance experts today at NDNB. We offer comprehensive, cost-effective, “fixed-fee” engagements for SOC 2 compliance all throughout North America and other select regions, and of course in our home state of Georgia.

SOC 2 Compliance Essentials & Important Points to Note

Continue reading
  719 Hits
719 Hits

SOC 2 Compliance Audits & Reports North Carolina | Raleigh & Charlotte, NC

SOC 2 compliance audits & reports for businesses located throughout Raleigh and Charlotte, North Carolina are offered by North America’s leading provider of regulatory compliance services – NDNB. We’ve been a household name throughout the Carolinas for years, offering high-quality, fixed-fee compliance services for entities of all sizes and industries. We also offer numerous supporting compliance services outside of SOC 2, such as PCI DSS certification, HIPAA compliance, GLBA reporting, and much more. Call and speak with CPA Christopher Nickell, at 1-800-277-5415, ext. 706 to learn more, or email him at This email address is being protected from spambots. You need JavaScript enabled to view it. today.

NDNB offers the following SOC 2 services – and other regulatory compliance solutions – for businesses located in the Raleigh Durham and Charlotte, N.C. locations:

1. SOC 2 Scoping & Readiness Assessments: Getting off on the right foot – as the old saying goes – is critically important for SOC 2 compliance, and it’s why every business should perform a SOC 2 scoping & readiness assessment. No, it’s not just another added cost to the SOC 2 engagement – rather – it’s an incredibly important step for ensuring both you and your auditor are keenly aware of critical issues for the assessment, such as the following: scope considerations, documentation deficiencies, technical, security and operational challenges, and much more. When properly performed, a SOC 2 scoping & readiness assessment yields significant findings and valuable insight into a service organization’s internal control environment, which is exactly why we recommend them. 

Continue reading
  852 Hits
852 Hits

SOC 2 Compliance Audits & Reports Atlanta, Georgia | Fixed Fees

SOC 2 compliance audits & reports for Atlanta, Georgia businesses are offered by the regulatory compliance experts at NDNB. As Atlanta’s unquestioned leading provider of third-party assessments for more than a decade, NDNB offers proven solutions with fixed-fee pricing, so speak with CPA Christopher Nickell today at 1-800-277-5415, ext. 706. Today’s growing mandates for businesses are centering around the need for ensuring the safety and security of confidential and highly sensitive client data, much of it now in the broader context as Personally Identifiable Information – PHI. From data centers to SaaS vendors – and more – consumer data is everywhere, and it needs to be protected, and it’s one of the main reasons why SOC 2 compliance is fast becoming a must for service organizations throughout North America.

NDNB offers the following services for SOC 2 compliance for Atlanta, Georgia businesses:

1. SOC 2 Readiness Assessments: Getting started on the right track for regulatory compliance means gaining a strong understanding of your internal control environment, what gaps and deficiencies exist, and what needs to be done for correcting such issues. This is exactly what you’ll receive when performing a SOC 2 readiness assessment with NDNB. You need to know the scope of your audit, what personnel are going to be involved, what facilities are going to be visited, what third-party entities are in-scope, what types of remediation is necessary, and more. And it’s why businesses all throughout Atlanta, GA turn to the regulatory compliance experts at NDNB, and so should you. Contact CPA Christopher Nickell today at 1-800-277-5415, ext. 706, or email him at This email address is being protected from spambots. You need JavaScript enabled to view it. to learn more about SOC 2 compliance.

Continue reading
  677 Hits
677 Hits

SOC 2 Compliance Audits & Reports Denver, Colorado

SOC 2 compliance audits & reports for Denver, Colorado service organizations are now immediately available from North America’s leading Service Organization Control (SOC) experts on SOC 1, SOC 2, and SOC 3 reporting, and that’s NDNB Accountants & Consultants, LLP (NDNB). Today’s complex business environment is placing heavy security mandates on thousands of businesses throughout the country, with SOC 2 often becoming the go to de facto assessment standard.

With a proven audit methodology that results in a highly efficient SOC 2 process from beginning to end, NDNB can help Colorado businesses save hundreds of hours and thousands of dollars on annual regulatory compliance costs. What you need is a quick primer on the entire SOC 2 process, so take note of the following points below, provided by North America’s leading provider of SOC 1 and SOC 2 audits – NDNB:

SOC 2 Compliance Audits & Reports Denver, ColoradoGet Ready: “Getting ready” effectively means performing a SOC 2 compliance readiness assessment, a brief, yet in-depth engagement that evaluates a service organization’s internal control as it relates to information security and operational policies, procedures and processes. Look, you don’t dive right into a SOC 2 assessment – especially if your organization is completely new to auditing – and it’s why a SOC 2 readiness assessment is highly essential. Determining gaps, weaknesses, and deficiencies prior to the audit is the key for a successful SOC 2 assessment, and it’s why a readiness assessment is a must.

Continue reading
  733 Hits
733 Hits

SOC 2 Compliance Audits & Reports Orange County | Southern California

SOC 2 compliance audits & reports for Orange County businesses – and all other areas throughout Southern California – are provided by the nation’s premier regulatory compliance assessors at NDNB Accountants & Consultants, LLP (NDNB). With a large and ever-expanding presence in Orange County and all throughout California, NDNB offers cost-effective, fixed-fee pricing for today’s demanding regulatory compliance assessments, such as SOC 1, SOC 2, SOC 3, PCI DSS, and more.

SOC 2 Compliance Audits & Reports Orange County | Southern CaliforniaAre you a business in the Southern California area, such as San Diego, Orange County and Los Angeles and need SOC 2 compliance assistance – if so – contact the regulatory professionals today at NDNB, while also taking note of the following roadmap for a successful SOC 2 audit:

1. Get Ready: Getting ready and prepared for a SOC 2 assessment means performing an annual readiness assessment, and especially for Southern California businesses that are new to regulatory compliance. A properly conducted SOC 2 readiness assessment yields significant value and findings for ensuring the overall audit process is a success, as NDNB examines all aspects of a service organization’s internal control environment. From policies and procedures to operational functions, understanding every element of one’s controls is essential for SOC 2 auditing success.

Continue reading
  644 Hits
644 Hits

SOC 2 Type 2 Compliance Audits & Reports South Carolina | Fixed Fees

Are you a business in South Carolina and looking for a high-quality, industry leading professional CPA firm to conduct a SOC 2 Type 2 compliance audit & report for your organization? Then look to the regulatory compliance leaders in South Carolina – and that’s NDNB – the preferred choice for businesses all throughout the Palmetto State. Throughout Columbia, Charleston, Greenville – and beyond – NDNB is the leading provider for SOC 2 audits for South Carolina businesses – so call and speak with Christopher Nickell, CPA, today at 1-800-277-5415, ext. 706, or email him at This email address is being protected from spambots. You need JavaScript enabled to view it. to learn more about NDNB’s SOC 2 services for South Carolina businesses.

We’ve also provided a helpful list of the following topics associated with SOC 2 reporting for helping you gain a greater understanding of the entire SOC 2 auditing process from beginning to end:

SOC 1 vs. SOC 2: There’s a “healthy” debate that always seems to surface when service organizations are deciding on which assessment to undertake – SOC 1 (which is also known as SSAE 16), or SOC 2 assessments – and it’s a good discussion to have. Just remember that SOC 1 reporting is for service organizations exhibiting a true relationship to the ICFR component, known as “Internal Controls over Financial Reporting”. SOC 2, however, is geared towards technology companies, such as SaaS vendors, data center, and others.

Continue reading
  576 Hits
576 Hits

SOC 2 Type 2 Compliance Audits & Reports Orange County California

NDNB provides comprehensive SOC 2 Type 2 compliance audits and reporting for businesses all throughout Orange County, CA, along with Los Angles, San Diego, and all other SoCal regions. With expertise second-to-none, a nationally recognized name, and highly competitive, fixed fee pricing, NDNB is the preferred choice for regulatory compliance services in California. We also offer numerous supporting tools for SOC 2 audits, such as industry leading information security policies and procedures, system hardening checklists, operational templates, and so much more. Going above and beyond in helping clients meet SOC 2 compliance – efficiently and cost-effectively – is what we do. Call and speak with Christopher G. Nickell, CPA at 1-800-277-5415, ext. 706 today, or email him at This email address is being protected from spambots. You need JavaScript enabled to view it. to learn more.

SOC 2 Type 2 Compliance Audits & Reports Orange County CaliforniaIn need of a SOC 2 Type 1 or a SOC 2 Type 2 compliance audit report for today’s growing regulatory compliance mandates? Then turn to the experts in Orange County, CA by speaking to NDNB, one of the nation’s leading providers of SOC 2 assessments. You’ll want to become educated on the technical merits of SOC 2 audits – and the overall AICPA SOC framework – so take note of the following critical subject matter, courtesy of NDNB Accountants & Consultants, LLP:

SOC 1 vs. SOC 2: It’s important to choose the correct audit, which means assessing the SOC 1 vs. SOC 2 landscape and determining which reporting option is right for your business. SSAE 16 SOC 1 reports are for service organizations offering services that impact a client’s financials, while SOC 2 assessments are for technology organizations, for which there seems to be an endless number of them in today’s digital economy. SOC 1 and SOC 2 are different – but also share similarities – mainly, the ability to assess one’s internal control environment. 

Continue reading
  602 Hits
602 Hits

SOC 2 Compliance Audits & Reports Oklahoma City, Tulsa | Fixed Fees

NDNB Accountants & Consultants (NDNB) provides fixed fee SOC 2 compliance reports and assessments for businesses all throughout Oklahoma, including OKC, Tulsa, and many other regions. With today’s growing regulatory compliance mandates, Oklahoma businesses are now being required by clients, regulators, and other relevant parties to undertake annual SOC 2 compliance, which can be a time-consuming and expensive proposition.

There’s risks everywhere in business today, and it’s why more and more Oklahoma businesses are being required to become SOC 2 compliant, and it’s also a good idea to reach out to the proven and trusted experts today at NDNB by contacting Christopher G. Nickell, CPA, at 1-800-277-54515, ext. 706, or emailing him at This email address is being protected from spambots. You need JavaScript enabled to view it.. As for preparing for a SOC 2 audits, it’s important to consider undertaking a SOC 2 readiness assessment – a highly useful engagement that helps deliver true value to any service organization in the following ways:

1. Assessing Scope: Scope “creep” can be very common in SOC 2 audits, ultimately causing price increases and headaches for everyone, so it’s important to clearly assess, identify, examine, and agree upon scope before the SOC 2 audit begins.

Continue reading
  666 Hits
666 Hits

SOC 2 Compliance Audits & Reports Raleigh | Durham North Carolina | Fixed Fees

NDNB Accountants & Consultants (NDNB) provides fixed fee SOC 2 compliance reports and assessments to service organizations in and throughout the Raleigh | Durham, North Carolina area, and the entire encompassing Research Triangle. North Carolina businesses performing critical services for other companies are now being required to undertake annual SOC 2 compliance, so talk to the experts today at NDNB for competitively priced, fixed fee SOC 2 Type 1 and SOC 2 Type 2 assessments.

SOC 2 Compliance Audits & Reports Raleigh | Durham North Carolina | Fixed FeesLooking for a firm with years of experience in the Raleigh Durham, North Carolina area, a company that has vast knowledge and expertise in almost every type of regulatory compliance mandate – such as SOC 1, SOC 2, SOC 3, PCI DSS, HIPAA, FISMA, and more – then get to know the professionals at NDNB today by contacting Christopher Nickell, CPA, at 1-800-277-5415, ext. 706, or emailing him at This email address is being protected from spambots. You need JavaScript enabled to view it..

Let’s be honest, nobody really enjoys the challenges and time commitments that come along with regulatory compliance – it’s often laborious and mundane, but it’s got to be done – and it’s why NDNB has developed in incredibly efficient, cost-effective, fixed-fee pricing model that ensures your SSAE 16 SOC 1 is completed on time and on budget. We don’t believe in scope creep, cost overruns, and all the other talked about audit nightmares – just efficiency and quality is what NDNB is all about.

Continue reading
  585 Hits
585 Hits

SOC 2 Compliance Audits & Reports San Francisco | Bay Area | Fixed Fees

NDNB Accountants & Consultants (NDNB) provides comprehensive SOC 2 compliance audits & reports – both SOC 2 Type 1 and SOC 2 Type 2 – to San Francisco and Bay area businesses requiring annual assessments. With the increased growth in technology – and outsourcing – businesses today are being required to undertake yearly SOC 2 assessments, for which NDNB provides high-quality, fixed fee pricing. NDNB has a proven track record of helping California businesses meet today’s growing regulatory compliance mandates, such as SSAE 16 SOC 1 compliance, SOC 2, SOC 3, PCI DSS, HIPAA, FISMA, and many other industry mandates. From San Diego to the Bay Area, we provide high-quality, efficient audit processes from beginning to end, so contact Christopher Nickell today at This email address is being protected from spambots. You need JavaScript enabled to view it. to learn more.

SOC 2 Compliance Audits & Reports San Francisco | Bay Area | Fixed FeesTechnology businesses in the Bay Area – such as data centers, Software as a Service (SaaS) organizations, cloud computing vendors, managed services providers, and more – are now being required to undergo annual compliance audits against the SOC 2 standard. While the SSAE 16 SOC 1 reporting option is also allowable – and used – technology minded entities generally gain greater value when undertaking SOC 2 compliance, as the framework itself has been tailored toward the information security arena.

SOC 2 Compliance for San Francisco and Bay Area | Determining Scope is Essential One of the first initiatives any organization needs to undertake regarding SOC 2 compliance is determining scope – but more important – which of the following five (5) Trust Services Principles (TSP) are going to be included for inquiring – and possibly testing – for the SOC 2 audit itself:

Continue reading
  628 Hits
628 Hits

SOC 2 Compliance Audits & Reports Los Angeles, Southern California, Orange County

SOC 2 compliance audits & reports for Los Angeles, Southern California, and Orange County businesses are available from NDNB Accountants & Consultants (NDNB), North America’s leading provider of regulatory audits. With increasing compliance requirements being placed on Southern California businesses, turn to the experts at NDNB who’ve been helping service organizations for more than a decade with high-quality, cost-effective regulatory compliance assessments. Nobody likes spending hundreds of hours on operationally taxing audits – we more than understand – and it’s why NDNB has developed an efficient, scalable, and easy-to-implement SOC 2 audit process from beginning to end.

SOC 2 compliance audits & reports for Los Angeles, Southern California, Orange County service organizations from NDNB include the following services:

• SOC 2 readiness assessments and gap analysis findings for helping prepare and properly plan for an efficient and comprehensive audit.• Fixed Fee SOC 2 assessments for both SOC 2 Type 1 and SOC 2 Type 2 reporting.• Comprehensive risk assessment document and security awareness training material for helping meet the rigorous mandates of the AICPA SOC 2 Trust Services Principles (TSP) framework.• Auditors and cyber security specialists with years of experience working with technology firms all throughout California, from San Diego to San Francisco, and beyond the Golden State borders.

Continue reading
  660 Hits
660 Hits

SOC 2 Compliance Audits & Reports San Diego, CA | Fixed Fees

Call the San Diego, California SOC 2 compliance audit experts today at NDNB Accountants & Consultants (NDNB) for fixed-fee pricing for Type 1 and Type 2 assessments. As one of the country’s true hotbeds for biotechnology and other information technology industries, San Diego is back in the driver’s seat in leading California into the new digital age. With great promises and rewards also comes great risks and liabilities, hence, the need for comprehensive SOC 2 audits for many of San Diego’s technology organizations.

SOC 2 Compliance Audits & Reports San Diego, CA | Fixed FeesNDNB has been providing professional regulatory compliance services for Southern California businesses for years, starting with the original SAS 70 auditing standard issued back in April, 1992. Since then, we’ve become a household name in California, working up and down the coast in offering the very best compliance services, such as SOC 1 SSAE 16 assessments, SOC 2 reporting, PCI DSS compliance, along with HIPAA, FISMA, and NIST compliance, and so much more.

SOC 2 compliance audits & reports for San Diego, CA businesses from NDNB include the following services:

Continue reading
  721 Hits
721 Hits

SOC 2 Audits Ohio | Cincinnati | Columbus | Cleveland | Fixed Fees

As one of the leading providers of SOC 2 audits for businesses in the buckeye state of Ohio, NDNB Accountants & Consultants (NDNB) personnel offer industry leading, high-quality SOC 1, SOC 2, and SOC 2 audits for service organizations located in Cincinnati, Columbus, and Cleveland. SOC 2 audits for Ohio businesses are becoming a mandate in today’s growing world of regulatory compliance, so turn to the experts at NDNB today for nationally recognized services, all at a fixed fee price. Not only is the Buckeye State home to many of our employees, we’ve been hard at work for many years helping various organizations throughout the state of Ohio with any number of regulatory compliance issues and challenges. From policy and procedure development to conducting SOC 2 audits, Ohio businesses can look to NDNB for quality audits at competitive rates.  

Notable SOC 2 services from NDNB for Ohio businesses include the following:

Competitively priced, fixed-fee SOC 2 audits from experienced personnel.In-depth SOC 2 Readiness Assessments for all industries and sectors.Complimentary SOC 2 policies and procedures including numerous information security policies, forms, checklists, templates, and other essential material.Fixed fee engagement for both SOC 2 Type 1 and SOC 2 Type 2 assessments, while also being performed by information security professionals with years of auditing expertise.

Businesses in Ohio can now turn to the industry leading SOC 2 compliance experts at NDNB, so call Christopher Nickell today at 1-800-277-5415, ext. 706 or email him at This email address is being protected from spambots. You need JavaScript enabled to view it.. With so many pressing regulatory compliance mandates being forced upon businesses today, it’s time to work with a proven, trusted provider in Ohio that offers competitively priced SOC 2 assessments, along with a large number of related services, such as PCI DSS and HIPAA reporting, and much more. 

Continue reading
  647 Hits
647 Hits

SSAE 16 Professionals | SOC 1 SSAE 16 and SOC 2 Audits | Nationwide Coverage | Fixed Fees

As industry leading SSAE 16 professionals with years of auditing and regulatory compliance expertise, NDNB Accountants & Consultants (NDNB) offers comprehensive SOC 1, SOC 2, and SOC 3 reporting for today’s growing service organizations. As compliance experts who began reporting on controls for service organizations under the historical SAS 70 auditing standard, the SSAE 16 professionals at NDNB...read more.

  539 Hits
539 Hits

SSAE 16 Type 2 compliance | Fixed Fees | Learn about SOC 1 Reporting

Call the experts at NDNB Accountants & Consultants for SSAE 16 Type 2 compliance guidance and expert recommendations for undertaking such an assessment in an efficient and cost-effective manner. SSAE 16 Type 2 compliance can be a challenge for many service organizations, so take note of the following four (4) important elements for SOC 1 SSAE 16 reporting:

1. Scope is Critical. It’s important to understand the boundaries of SSAE 16 Type 2 compliance – specifically - what people, policies, processes, and procedures are to be included in an audit of this type. With that said, it’s universally agreed upon by most CPA firms conducting such engagements that the following general controls should be included from a scope perspective, regardless of the business type, function, or location:

Executive toneHuman ResourcesChange ManagementLogical Security Network SecurityComputer OperationsPhysical Security Environmental Security

Additionally, the service organization’s “business process” should also be included within the scope of an SSAE 16 Type 2 compliance assessment. From payroll companies to trust and actuarial services, SSAE 16 Type 2 compliance assessments are generally geared towards businesses that exhibit internal controls over financial reporting – a concept known as ICFR. Lastly, don’t forget to confirm with your clients as to their demands and overall expectations of what’s include in a SSAE 16 Type 2 compliance report. Communication with all parties is extremely critical for ensuring the success of SSAE 16 audits. 

Continue reading
  696 Hits
696 Hits

SOC 2 Reports Canada | Fixed Fees | Call NDB

NDNB Accountants & Consultants (NDNB) offers industry leading SOC 2 reports for Canada service organizations seeking to comply with the AICPA Service Organization Control (SOC) reporting framework. In joint collaboration with the Chartered Accountants of Canada (CICA), the American Institute of Certified Public Accountants (AICPA) developed the Trust Services Principles, which are an integral component of SOC 2 reports. More specifically, the TSP’s are criteria based provisions that consist of the following:

The security of a service organization's system.The availability of a service organization's system.The processing integrity of a service organization's system.The confidentiality of the information that the service organization's system processes or maintains for user entities.The privacy of personal information that the service organization collects, uses, retains, discloses, and disposes of for user entities.

Moreover, included within the TSP’s are the following 7 areas:

Organization and managementCommunicationsRisk management and implementation of controlsMonitoring of controlsLogical and physical access controlsSystem operations, andChange management

So take note of the following important points regarding SOC 2 reports in Canada, brought to you by NDNB Accountants & Consultants – North America’s leading providers of SOC 2 compliance reporting:

Understand Scope. There are essentially two (2) important scope considerations to think about regarding SOC 2 reports. First, what specific business processes and/or business platform will your company be including within the actual SOC 2 assessment. Second, which of the five Trust Services Principles will you include within your SOC 2 assessment – one, a few, or all of them? This can be somewhat confusing at first, but give Chris Nickell, CPA, a call at 1-800-277-5415, ext. 706, and he’ll be glad to clarify and help you better understand these two important scope issues.SOC 2 is vastly different than SOC 1. Though they are often clumped together as similar audits, there are considerable differences, the most important being that SOC 1 (which utilizes the SSAE 16 reporting standard) is generally geared towards internal controls over financial reporting (ICFR concept), while SOC 2 is primarily aimed at technology oriented service organizations (i.e., data centers, managed services providers, SaaS models, etc.).There are two (2) types of SOC 2 reports. Service organizations can obtain a SOC 2 Type 1 and/or a SOC 2 Type 2. So what’s the difference? A SOC 2 Type 1 is for reporting a service organizations’ controls for a “point in time”, a specific date, that is. As for a SOC 2 Type 2, it reports on a service organizations for a state time period, usually a six (6) month period. Most organizations new to SOC 2 reporting in Canada undertake a SOC 2 Type 1 the first year, followed by SOC 2 Type 2 reporting in subsequent years.Welcome to Regulatory Compliance. Once you begin the process of an initial SOC 2 report, it really becomes an annual process, so say hello to the world of regulatory compliance. It means finding a high-quality CPA firm to work with, one that offers a fixed-fee engagement for a multi-year commitment. After all, changing auditors year after year makes no sense at all, so call Chris Nickell, CPA at 1-800-277-5415, ext. 706, or email him at This email address is being protected from spambots. You need JavaScript enabled to view it..
  593 Hits
593 Hits

SOC 2 Readiness Assessment Canada | Fixed Fees | Call NDB

NDNB Accountants & Consultants (NDNB) provides comprehensive SOC 2 Readiness assessment for Canada companies for helping ensure an efficient, scalable, and cost-effective SOC 2 audits. From Vancouver to St. Catharines, NDNB has a well-known and well-recognized footprint with years of regulatory compliance expertise. Call and speak with CPA Christopher Nickell at 1-800-277-5415, ext. 706 today, or email him at This email address is being protected from spambots. You need JavaScript enabled to view it. to learn more about SOC 2 readiness assessments for Canadian companies.

It’s also important that Canadian companies have a strong understanding of SOC 2 compliance, which means learning about the five (5) Trust Services Principles (TSP). More specifically, the TSP’s are criteria based provisions that consist of the following:

The security of a service organization's system.The availability of a service organization's system.The processing integrity of a service organization's system.The confidentiality of the information that the service organization's system processes or maintains for user entities.The privacy of personal information that the service organization collects, uses, retains, discloses, and disposes of for user entities.

Moreover, included within the TSP’s are the following 7 areas:

Continue reading
  516 Hits
516 Hits

Experian EI3PA Compliance Certification | Fixed Fees | 1-800-277-5415-ext.705

Experian EI3PA compliance certification services are offered from NDNB, one of North America’s leading providers of regulatory compliance assessment services for credit agencies. If you store, process, and/or transmit sensitive Experian provided data, then an EI3PA audit may come calling. Being compliant with EI3PA means having a number of documented information security and operational specific policies, procedures, and processes in place. NDNB has years of experience in performing EI3PA compliance certification assessments, so call and speak directly with a PCI-QSA today at 1-800-277-5415, ext. 705.

It’s also important to note that EI3PA assessments are essentially modeled after the PCI DSS standards, which means you need to have a Payment Card Industry Qualified Security Assessor (PCI-QSA) perform such an engagement, thus call and speak with a PCI-QSA today at 1-800-277-5415, ext. 705.

Experian provided data is almost often that of Personally Identifiable Information (PII), highly sensitive and confidential data - that if compromised - could be disastrous for consumers, and it’s why EI3PA assessments have grown significantly in recent years. Talk to the experts at NDNB today and receive a competitive fixed fee for your Experian EI3PA compliance & certification needs. With twelve (12) mandated “Requirements”, consisting of approximately 275 criteria, the EI3PA compliance roadmap can be a challenging aspect for many organizations, thus call the experts today at NDNB by speaking directly with a PCI-QSA.

Continue reading
  581 Hits
581 Hits

Get A Free Quote Today!

Fill out my online form.