Kalibrate achieves SOC 1® and SOC 2® Type II compliance accreditation
Ben Osbrach, CISSP, CISA, QSA, CICP, CCSFP, National Risk Advisory Leader of Marcum’s risk advisory group says, “We were excited to work with Kalibrate from the very start. They are an intriguing organization delivering high quality services and their business adds to our growing SOC reporting practice.”
“The successful completion of our SOC 1® and 2® Type II examination audit(s) provides Kalibrate’s clients with the assurance that the controls and safeguards we employ to protect and secure their data are in line with industry standards and best practices,” said Norris Lyons, Chief Technology Officer at Kalibrate.
SOC 1® engagements are performed in accordance with the American Institute of Certified Public Accountants’ SSAE 18, Statement on Standards for Attestation Engagements (SSAE) No. 18, Reporting on Controls at a Service Organization.
The SOC 1® Type II examination is performed by an independent auditing firm and is intended to meet the needs of the management of user entities and the user entities’ auditors, as they evaluate the effect of the controls at the service organization on the user entities’ financial statement assertions.
Marcum’s testing of Kalibrate’s control environment included examination of their policies and procedures regarding computer operations, application change control, information security, and data communications. Upon completion of the examination, Kalibrate received a Service Auditor’s Report with an unqualified opinion demonstrating that their policies, procedures, and infrastructure controls were suitably designed and operating effectively to achieve the related control objectives throughout the examination period.
SOC 2® engagements are performed in accordance with the American Institute of Certified Public Accountants’ (AICPA) AT-C 205, Reporting on Controls at a Service Organization and based on the trust service principles outlined in the AICPA Guide: “Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy”.
The SOC 2® Type II report is performed by an independent auditing firm and is intended to provide an understanding of the service organization’s suitability of the design and operating effectiveness of its internal controls. A service organization may select any of the trust service principles applicable to their business (security, availability, processing integrity, confidentiality, and privacy) and Kalibrate chose to report on them all. The successful completion of this voluntary engagement illustrates Kalibrate’s ongoing commitment to create and maintain a secure operating environment for their clients’ confidential data.
Marcum’s testing of Kalibrate’s controls included examination of their policies and procedures regarding network connectivity, firewall configurations, systems development life cycle, computer operations, logical access, data transmission, backup and disaster recovery, and other critical operational areas of their business. Upon completion of the audit, Kalibrate received a Service Auditor’s Report with an unqualified opinion demonstrating that their policies, procedures, and infrastructure meet or exceed the stringent SOC 2® criteria.
Found this interesting? Why not share it:
Read more articles about:Fuel pricing
Subscribe and get the latest updates
You may unsubscribe from our mailing list at any time. To understand how and why we process your data, please see our Privacy & Cookies Policy
Can smaller sometimes be better? How Best Buy, Burlington, and Walgreens are shaping brick and mortar retail
As the saying goes, the constant in life is change. In today’s brick and mortar retail environment, the pace of...
The kids are alright – aren’t they? Examining U.S. birth rates
What's happening with birth rates in first-world countries, and what is the impact on different retail concepts? Dave...