risk3sixty white papers

SOC Reporting Process Overview

Helping Firms and Their Owners Communicate

SOC Reporting Process Overview Whitepaper


SOC reports are an independent audit governed by the AICPA that must be performed by a certified public accounting firm.

As an organization your customers and prospects are likely requesting a SOC report to establish an acceptable level of risk management to do business or continue doing business.

Similarly, your organization is likely performing similar reviews for your vendors – such as data centers and managed service providers – to ensure you can rely on business partners to serve customers.

    Team Specialist

    Phil Brudney


    Philip leads Security, Privacy, and Compliance research and quality assurance at risk3sixty. He oversees privacy and attestation reporting and is the co-quality assurance manager for the assurance practice where he is responsible for ensuring each engagement meets risk3sixty’s rigorous quality standards in line with AICPA requirements. Phil leads development and peer review of thought leadership, research, and whitepapers. In addition, Phil acts as the Data Protection Officer (DPO) for a wide array of US based firms facing GDPR compliance.

    Speak With An Expert

    Let Us Know How We Can Help

    Fill out the form and let us know what service you’re interested in; or ask any general question and we’ll get back to you as soon as possible.