Definition

Soc 1 (Service Organization Control 1)

Contributor(s): Alex DelVecchio

A Service Organization Control 1 or Soc 1 (pronounced "sock one") report is written documentation of the internal controls that are likely to be relevant to an audit of a customer’s financial statements.

Soc 1 is divided into Type 1 and Type 2 reports. A Type 1 reports on a service organization’s suitability of design of controls on a specific date, while a Type 2 reports on the effectiveness of the control design over a period of time. Soc 1 reports are performed by a service auditor. Soc 1 reports cover the requirements of SSAE 16.

This was last updated in April 2012

Dig Deeper on Cloud Computing Security Issues: Incident Response - Data Breach Prevention

All
News
Get Started
Evaluate
Manage
Problem Solve

Start the conversation

Send me notifications when other members comment.

-ADS BY GOOGLE

File Extensions and File Formats

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S

T
U
V
W
X
Y
Z
#

Powered by:

SearchSecurity

Risk & Repeat: Who's to blame for bad passwords?

This week's Risk & Repeat podcast discusses whether users are responsible for creating and reusing weak passwords or if the ...
Recorded Future names Tessa88 suspect in LinkedIn, Myspace breaches

Researchers at Recorded Future identified the individual behind the notorious Tessa88 hacker handle, but it's unclear what role ...
Zero-trust security means new thinking plus practical steps

Implementing a security policy that, essentially, trusts no one and nothing doesn't have to be overwhelming if you understand the...

SearchCloudComputing

Control resource sprawl in multi-cloud architectures

Resource sprawl can occur quickly and easily in a multi-cloud deployment. Learn how to dodge this costly, yet common, issue with ...
Compare cloud container registries from AWS, Azure and Google

Many developers use the Docker Hub container registry, but there are other options from AWS, Azure and Google. Explore these ...
Evaluate 3 cloud-native CI/CD pipeline tools

When it comes to continuous integration and delivery tools, there is no shortage of comparable options -- including those from ...

SearchAWS

A complete guide to AWS re:Invent 2018 news and analysis

AWS re:Invent 2018 is sure to generate a number of important updates for enterprise cloud users. Stay on top of the latest news ...
EC2 Fleet Auto Scaling targets diverse workloads

Autoscaling is table stakes for public cloud providers. Now AWS customers can apply it to their EC2 Fleet instance groups for ...
How CloudFormation Macros stack up against other IaC tools

Developers can use an updated CloudFormation feature to manage and deploy IaC templates with Lambda. However, other native and ...

SearchCloudApplications

Microsoft Azure Dev Spaces, Google Jib target Kubernetes woes

Microsoft Azure and Google Cloud both added cloud application development tools that improve and simplify the process of creating...
With progressive web applications, developers blur the lines

With progressive web applications, single-page apps, motion UI and other innovations, app development meets the moment, giving ...
Web app development morphs as apps and websites merge

The lines between web and mobile app and websites are blurring, so development silos are out, and boning up on building ...

SearchServerVirtualization

Design data center redundancy based on cloud outage lessons

Public cloud providers have had catastrophic outages, but IT administrators can learn from cloud redundancy failures and ...
Manage host, VM access with a Hyper-V administrators security group

Use Hyper-V roles to limit users to predefined levels of access. By creating security groups and managing them with PowerShell, ...
Generate a Hyper-V report to track clusters, nodes with PowerShell

It's difficult to navigate all the information related to Hyper-V nodes and clusters, so use PowerShell commands and scripts to ...

SearchVMware

New vSphere HTML5 client features, future direction explained

VMware's updated vSphere HTML5 client includes a list of new and improved features, but the bigger news is that it's the ...
Examine the history of vSphere Flash client -- and its downfall

To see why the vSphere web client failed to live up to expectations and learn from those mistakes, study its development and the ...
VMware-AWS partnership builds on cloud, database integration

The VMware-AWS integration continues to grow with Amazon RDS on VMware. Meanwhile, better coverage, prices and management tools ...

ComputerWeekly.com

ODI’s OpenActive accelerator ends after getting startups up and running

Startups have been using the accelerator’s open data to develop fitness-related products in an effort to encourage people to be ...
BA to sue CBRE over May Bank Holiday datacentre outage

Airline is taking legal action against the managed service provider tasked with overseeing the management of its datacentres ...
Why CIOs must start offloading work

Taking on more responsibilities is having a detrimental effect on digital transformation and customer experience initiatives

Close