mail@gemini-theme.com
+ 001 0231 123 32
All demo content is for sample purposes only, intended to represent a live site. Please use the RocketLauncher to install an equivalent of the demo, all images will be replaced with sample images.
NDB is Atlanta’s premier provider of compliance services, offering comprehensive SOC 2 Type 2 reports and assessments for businesses throughout the greater Atlanta, GA metropolitan area. From Macon to Marietta – and beyond, NDB has been Atlanta’s leading provider of regulatory compliance services, ranging from SOC 1 and SOC 2 reporting to HIPAA, PCI DSS, FISMA, NIST, and much more. When it comes to finding a high-quality, proven provider of SOC 2 Type 2 services, contact the experts today at NDB by speaking with Christopher Nickell, CPA, at 1-800-277-5415, ext. 706, or emailing him at This email address is being protected from spambots. You need JavaScript enabled to view it..
As for NDB’s SOC 2 Type 2 reports and assessments for Atlanta, GA businesses, it’s a good idea to get to know the SOC standard, so we’ve provided the following helpful information regarding the AICPA SOC framework:
SOC 1 and SOC 2: There’s quite a bit of chatter regarding the SOC 1 vs. SOC 2 debate, so just remember this for simplicity and clarity: SOC 1 audits are for service organizations having an ICFR element within their internal control environment, while SOC 2 assessments are ideally suited for today’s technology companies – cloud computing, data centers, etc. Ultimately, your clients and prospects will dictate which one of these reports to undertake – and if they’re educated on the SOC 1 vs. SOC 2 topic, they’ll pick the correct one. If not, then be prepared to politely “educate” them on the technical differences between SOC 1 and SOC 2.
Type 1 vs. Type 2: A SOC 2 “Type 1” report is issued for a specific point in time, such as September 30, 20xx, while a SOC 2 “Type 2” is a report that illustrates a service organization’s control environment over an agreed time period, generally six (6) months. Most businesses – but not all – start out with a Type 1, then progress towards annual SOC 2 Type 2 compliance.
Trust Services Criteria: If you’re going to be performing annual SOC 2 audits, then now’s the time to start learning about the following five (5) Trust Services Criteria (TSP): 1. Security. 2. Availability. 3. Processing Integrity. 4. Confidentiality. 5. Privacy. They each are unique in their own right, and they each contain specific clauses relating to a service organization’s policies, procedures, and processes. Knowing which of the TSP’s to include within a report – and why – is critical, so talk to SOC 2 expert Christopher Nickell, CPA, at 1-800-277-5415, ext. 706 today.
Scope: It’s also important to properly scope what business processes are to be in included within the scope of a SOC 2 assessment. More specifically, would it include the service organization’s entire business functions, or just a subset? This is important to identify early on for ensuring you mitigate “audit scope creep” during the SOC 2 assessment process. An audit can “run away” from you very quickly, so it’s critically important to clearly define scope, effectively putting a leash on the auditors and everyone else!
Documentation: Policies and procedures are critically important when it comes to SOC 2 compliance, from essential information security policies – such as change management, data backup, and more – to operational and infrastructure documentation. It’s an area that most service organizations struggle immensely with, and it’s why NDB provides a SOC 2 Policy Packet for helping develop all necessary policy documents for an actual SOC 2 assessment.
Remediation: It’s also important to remember that EVERY service organization will have at least some element of remediation to perform – it’s just how auditing works – after all, does every company have a picture-perfect internal control environment? The amount and time spent on remediation is ultimately determined by an upfront SOC 2 readiness assessment and gap analysis – a “pre-audit” exercise for looking into one’s operational, I.T. and infrastructure processes and procedures. NDB has years of experience performing both SOC 2 readiness assessments and the actual audit itself, so call and speak with Christopher. G. Nickell, CPA, today at 1-800-277-5415, ext. 706.
Why NDB: As trusted advisors and regulatory compliance specialists to businesses all throughout the Atlanta area, NDB has developed a reputation as a firm offering high-quality services, complete with knowledgeable auditors – all at competitively priced fixed-fees. Whatever your compliance mandates are – from SSAE 18 SOC 1 to SOC 2, SOC 3, HIPAA, PCI DSS, and more – we’re here to assist metro Atlanta businesses every step of the way. Call and speak directly with Christopher. G. Nickell, CPA, today at 1-800-277-5415, ext. 706, or email him at This email address is being protected from spambots. You need JavaScript enabled to view it..
NDB is Atlanta’s leading provider of regulatory compliance services, ranging from SSAE 18 SOC 1 assessments to SOC 2 audits, and more. Today’s cybersecurity world has brought about massive compliance mandates within various industries, so talk to the experts today about becoming compliant in an efficient and cost-effective manner.
NDB offers SOC 2 services for businesses using Amazon AWS, Microsoft Azure and Google GCP.
When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.
Follow