• Company
    • About Us Who we are, what we do, and why!
    • Open Roles Want to work with exciting, high-growth clients, on audits that matter?
    • Testimonials Read about why clients trust us as their auditors
  • AUDITS
    • SOC 1 Prove the integrity of your systems for supporting financial reporting data
    • SOC 2 Demonstrate the security of your system and organisational controls
    • ISO 27001 Certify your information security management system (ISMS)
    • CSA Star Demonstrate best-practice cloud security controls with CSA Star Level 2 certification
    • PRIVACY COMPLIANCE Demonstrate your privacy compliance; GDPR, CCPA, ISO 27701 and more
    • Consumer Data Right Achieve accreditation for the CDR with an assurance report covering Schedule 2
    • HIPAA Demonstrate compliance with the HIPAA regulation for enterprise healthcare customers
    • Sustainability Reporting Improve and report on your environmental, social and governance impact
    • Compliance Packages Cover all bases with our subscription packages
  • Apps
    • Readiness Assessment Our flagship product to assess 12+ global standards without duplication in 60 minutes
    • CDR Assessment Our specialty CDR preparation software to navigate the compliance requirements
    • Health Check Benchmark your controls maturity to prioritise your focus
    • Scoping Assessment Identify your system and organisational scope for InfoSec standards
    • System Description Prepare your system description using easy-workflows and automation
  • Resources
    • What is Assurance? What you need to know about audits, compliance and enterprise trust.
    • Compare Standards Compare the leading standards to see which is best for you
    • Best Practice Series The why and how-to-guides for InfoSec best practices
    • CDR HOW-TO GUIDES Complete guides on the information security requirements of the CDR
    • CASE STUDIES Practical tips, insights and the user experience of our clients
    • Blog Simple guides, industry updates and thought-leadership on audits and compliance
  • Contact
  • COMPANY
    • About Us
    • Open Roles
    • Testimonials
  • AUDITS
    • SOC 1: Financial Reporting
    • SOC 2: Cyber Security
    • ISO 27001: Information Security
    • CSA STAR: Cloud Security
    • Privacy Compliance: GDPR, CCPA and More
    • Consumer Data Right
    • HIPAA: Healthcare Data Security
    • ESG Reporting: Sustainability
    • Compliance Packages
  • PRODUCTS
    • Readiness Assessment
    • CDR Readiness Assessment
    • Compliance Health Check
    • Scoping Assessment
    • SOC System Description
  • RESOURCES
    • What is Assurance?
    • Compare Compliance Standards
    • Best Practices Series: Compliance Guides
    • CDR How-To Guides
    • Case Studies
    • Blog
  • CONTACT

SOC 1 TYPE 1 & 2

SOC 1 attestations report on the internal controls relevant to financial reporting. We follow the SSAE 18, ISAE/ASAE 3402, and GS 007 standards.

 
REQUEST A QUOTE
desk-meeting-no-bg
Cloud-native

Cloud-native

We excel in modern software and cloud environments

Integrated

Integrated

Platform and audits combined to remove the complexity & surprises

Agile

Agile

Manage audits the way the rest of your business operates

Complete

Complete

Everything you need to reach compliance & audit success


OUR APPROACH

HubSpot Video

 

SOC 1 Audit Steps

We support the end-to-end steps and issue your reports.

SOC 1 Readiness Assessment

We identify the scope and control objectives, your current control practices, and assess whether you are meeting the control objectives required by your customers. We issue a Gap Analysis report with recommendations for improvement prior to the SOC 1 audits.

SOC 1 Remediation Support

We guide you as you address the observations, to implement fit-for-purpose solutions that align with the SOC 1 control objectives. Iterative reviews and feedback to support your team.

SOC 1 Audit - Type 1

SOC 1 Type I reports demonstrate the design of your control practices. We review one sample of each control practice to confirm they are designed appropriately and meet the control objectives.

SOC 1 Audit - Type 2

SOC 1 Type 2 reports demonstrate the operating effectiveness of your controls over a period of time. You provide a list of events during the period and we select a sample. We check that you applied your control practices in line with how you have defined them.

You're in great company. We work with 100+ of the best software companies. From 2 to 14,000 employees.

Rokt
Salestrekker
Inlogik logo
Datazoo
Dropsuite
Workvivo-4
HotDoc
Nano
Sine
plexure
bravura
Checkbox

What our customers say:

' We are super stoked that we chose to work with AssuranceLab who have made the audit such a pleasant experience. '

Guido Santo, VP Cybersecurity
Rokt

' The key was in the simplification of the audit requirement. AssuranceLab speaks a language the customer can understand. This is critical. '

Paul Lubik, Consultant
vic-ai_owler_20210316_173825_original

' We have had the most seamless and great relationship. AssuranceLab has taken care of us every step of the way, helping us get through the dreaded audits in a way that actually isn’t stressful or overwhelming.

I actually really enjoy the audits as this way takes the pressure and stress out of it completely and knowing we have support whenever we need it is also helpful. '

Catherine Fromont, People and Operations
FileInvite_Logo

' AssuranceLab always responded to our questions quickly and their explanations were clear and efficient. That helped us better understand our controls and make improvements to make them more efficient and manage compliance better. '

Huy Dang Nguyen, Senior Security Specialist
KMS Tech

' AssuranceLab was supportive and responsive throughout the entire process... (their) agile approach fit well. They were always just a phone call away and would match the speed we were going for any given week. '

Tristan Cole, CTO
Sempo-2

' This flexible process allowed us time to make changes while catering to the business needs. It contributes to making the audit faster, simpler and for us to understand the processes better. '

Adrian Loke, Director of Infrastructure
2560px-Dropsuite_logo.svg

' AssuranceLab listened to understand our unique issues and helped guide us through the audit process in a way that made sense for us.'

Brad Shaw, CEO
Livepro logo

' The collaborative approach provided many opportunities for small course corrections before investing too much time. This prevented wasted effort and improved the quality and business fit. '

Bryon Westmoreland, CEO
communic8-logo-blue.9788d3c

' We found the whole process to become SOC 2 Type I and then SOC 2 Type II was a complex problem made easy by AssuranceLab. Whenever we had a query about anything the responses were prompt and thoughtful. '

Robert Sumison, Head of Security
inlogik-logo

REQUEST A QUOTE

Services Report

RESOURCES

Our posts to guide you from planning through to achieving and maintaining your compliance.

Planning:

  • Scope: How it's Defined
  • Timeline
  • What Does it Cost?
  • The 7 Steps to Compliance
  • Type 1 and Type 2 Reports
  • Six Reasons to do a Type 1
    Report First
  • Straight to Type 2
  • Audit Ready in Minutes: How Agile Audits Work
  • Generic vs. Tailored Audits
  • Combining Standards
  • Auditor Selection Checklist

Compliance Guides:

  • Best Practices Series
  • Practical Tips
  • Endpoint Devices and BYOD
  • Implementing a HRIS
  • Security, Privacy and Confidentiality
  • Five Steps to Implement Policies that Fit
  • The Four Functions of Compliance Platforms
  • Software for Compliance
  • 10 Compliance Standards

Maintaining Compliance:

  • How to Pass Type 2 Audits
  • Managing Controls: Continuous
  • Managing Controls: Periodic
  • Managing Controls: Event-driven




 

FEATURED SOC 1 RESOURCES

AssuranceLab
  • Jul 5
  • 5 min

SOC 1, SOC 2, or ASAE 3150 for CDR Accreditation?

The CDR accreditation requires an independently audited SOC report to demonstrate the minimum set of information security controls.
Write a comment
AssuranceLab
  • Mar 18
  • 3 min

Making the most of your SOC Report: 7 Pragmatic Tips

You've done the hard work achieving SOC 2. It's time to get value from your investment. How do you communicate this achievement?
Write a comment
Admin
  • Dec 10
  • 2 min

Mixing Startups & Accountants

Yes... SOC 2 is a paradox. Why would a technology security standard be signed off by chartered accountants?
Write a comment

©2020 AssuranceLab

  • Privacy Policy

©2022 AssuranceLab

LinkedIn

HQ: Sydney, NSW Australia

E: info@assurancelab.com.au

ABN: 25 633 120 108

 

Liability limited by a scheme approved under Professional Standards Legislation.

HQ: Sydney, NSW Australia

E: info@assurancelab.com.au

P: +61(0) 490 086 000

ABN: 35623143831

LinkedIn