Securitas Electronic Security announces it has achieved Service Organization Control (SOC) 2 certification, an auditing procedure governed by the American Institute of CPAs (AICPA).
SOC 2 requires companies to establish and follow strict information security policies and procedures, encompassing the security, availability, processing, integrity and confidentiality of customer data. SOC 2 is said to ensure that a company’s information security measures are in line with the unique parameters of today’s Cloud requirements.
The accomplishment confirms SES has achieved the service commitments and system requirements for the trust services criteria relevant to SES monitoring, service platforms and operations, according to the company. “With SOC 2 certification, companies have the security of knowing their security providers and business partners have gone through a detailed and thorough audit that recognizes adherence to a strict set of principles around securely managing customer data,” says Michael Beattie, senior vice president, IT, SES. “To assist clients, SES gives them access to our SOC 2 certification report so their audit teams can complete their own compliance requirement processes.”
The SOC reporting platform was developed by AICPA to help companies get a handle on the complex, diverse security issues present in the world, while providing a framework for service providers to measure against. The reports measure how well service and solution providers protect the confidential information of their customers. SOC 2 requirements are designed for companies that provide services including data hosting, colocation, data processing and software-as-a-service (SaaS) and is based on five “trust services principles” that reflect different criteria for managing customer data: security, privacy, availability, processing integrity and confidentiality.