Definition

Soc 1 (Service Organization Control 1)

Contributor(s): Alex DelVecchio

A Service Organization Control 1 or Soc 1 (pronounced "sock one") report is written documentation of the internal controls that are likely to be relevant to an audit of a customer’s financial statements.

Soc 1 is divided into Type 1 and Type 2 reports. A Type 1 reports on a service organization’s suitability of design of controls on a specific date, while a Type 2 reports on the effectiveness of the control design over a period of time. Soc 1 reports are performed by a service auditor. Soc 1 reports cover the requirements of SSAE 16.

This was last updated in April 2012

Dig Deeper on Cloud Computing Security Issues: Incident Response - Data Breach Prevention

All
News
Get Started
Evaluate
Manage
Problem Solve

Start the conversation

Send me notifications when other members comment.

-ADS BY GOOGLE

File Extensions and File Formats

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S

T
U
V
W
X
Y
Z
#

Powered by:

SearchSecurity

Despite reservations about NSA's Ghidra, experts see value

The NSA's reverse-engineering tool, Ghidra, was released to the public and despite some initial concerns experts are generally ...
Nine email security features to help prevent phishing attacks

Check out nine email security features that can help protect you from phishing attacks. First, make sure they're enabled on your ...
Election security threats loom as presidential campaigns begin

Fragile electronic voting systems and the weaponization of social media continue to menace U.S. election systems as presidential ...

SearchCloudComputing

Google Cloud outages resolved, but stakes still high for users

Several Google Cloud services suffered some recent hiccups, but analysts gave the service provider high marks for quick ...
What are the two types of hybrid cloud infrastructure?

Hybrid cloud designs are shifting as public cloud providers push on premises with alternatives to a two-vendor approach. Learn ...
Understand AI and machine learning security impacts on cloud apps

Cloud-based machine learning can alleviate and aggravate security concerns. Review analysis and advice from our experts to stay ...

SearchAWS

Maximize Amazon S3 reliability with shrewd choices

IT organizations moving to AWS might have data protection concerns. However, with replication across regions and versioning ...
Accelerate data migration with AWS DataSync

Dig into the details of AWS DataSync, such as deployment options and availability. Compare it to similar AWS services and see how...
Gogo's migration to AWS doesn't mean lock-in

In-flight broadband service provider Gogo has joined other companies with an all-in cloud push toward AWS, while keeping an eye ...

SearchCloudApplications

Microsoft Azure Dev Spaces, Google Jib target Kubernetes woes

Microsoft Azure and Google Cloud both added cloud application development tools that improve and simplify the process of creating...
With progressive web applications, developers blur the lines

With progressive web applications, single-page apps, motion UI and other innovations, app development meets the moment, giving ...
Web app development morphs as apps and websites merge

The lines between web and mobile app and websites are blurring, so development silos are out, and boning up on building ...

SearchServerVirtualization

Use PowerShell Docker to manage Windows container components

Take advantage of the PowerShell for Docker module to easily create and manage Windows containers in your environment with this ...
Market evolves to address container security issues

Container use is gaining traction in virtual environments, but containers present unique security challenges that vendors and ...
Container management tools must overcome limitations

As container adoption surges, the management tools organizations need to support these deployments at scale are still in their ...

SearchVMware

What to do when you can't deploy an OVF template

Invalid certificates can keep OVF-based VM deployments from working properly. Luckily, admins can work around this issue by ...
Refresh your networking knowledge with this NSX overview

Discover the benefits and drawbacks of VMware's network virtualization platform and answer any lingering questions you may have ...
VMware Workstation 15's built-in REST API eases VM automation

You can use Workstation 15's new REST API to automate VM tasks. Simply enable the GUI and sort tasks with a PowerShell script ...

ComputerWeekly.com

New Accenture-Microsoft group to sharpen industry focus

The new business group will deliver industry-specific offerings and consulting services to enterprises that lean towards ...
Build in trust, experts advise cyber innovators

Trust will be increasingly important in the digital era, and is therefore a key component of new products and services, experts ...
Component prices skew server market

Global server revenues jump as increased cost of components is passed on

Close