Regulatory and compliance

Our regulatory and compliance services include SOX, SSAE16/ISAE 3402 compliance audits.

SOC Assurance and Compliance 

As a service organisation, you need to accurately communicate the integrity of your financial internal controls, data security, availability, processing integrity, confidentiality and privacy to customers and/or their auditors. An appropriate service organisation control report should help establish the trust and confidence that’s so crucial in today’s highly competitive marketplace. 

There are now a variety of reporting options, so making the most appropriate choice for your organisation can be challenging. Which report best conveys what you need your users to know? Is the best fit a SOC Type 1 report or would a SOC 2 or SOC 3 report be better? 

At RSM we have professionals dedicated to helping service organisations across the world in this very specialised area. Our SOC assurance experts will help you navigate compliance challenges so that you can clearly communicate your organisation’s commitment to internal controls. 

We often recommend a readiness review to identify potential deficiencies with sufficient time to remediate and retest the controls prior to a company’s formal SOC audit. 

Service organisation control reporting 

A successful service organisation control (SOC) report helps build trust and confidence by demonstrating that your organisation has the necessary controls implemented and operating effectively, regardless of your organisation’s size or industry. Making the right choice with reporting options is not always easy. We’re well-positioned to prepare and issue SOC 1, 2 or 3 assurance reports and discuss customised alternative reporting options under e.g. AICPA attestation standards. Our years of specialisation and experience in SOC reporting will help you arrive at the option best suited to your specific situation. 

Our proprietary methodology and SOC-specific software allow us to handle your SOC engagement efficiently.