Skip to main content
NEWS
Image ISAE 3402
ISAE 3402 | SOC1
ISAE 3402 | SOC 1 Type 1 vs. Type 2.

Organizations increasingly outsource non-core business processes to service organizations. A Service Organization Control (SOC) report in compliance with ISAE 3402 provides assurance over outsourcing.

outsourcing
Outsourcing
Outsourcing in history
Organizations have been dealing with how they can exploit their competitive advantage since the industrial Revolution to increase markets and their profits in these markets. The most important model in the 19th and 20th century was the large integrated organization.
ISAE 3402
Risk
SOC 1 & SOC 2
The general and most common term for reporting on third-party risks by service organizations to user organizations is Systems and Organization Control Report or SOC-report. This term is originated by the American Institute of Certified Public Accountants (AICPA) as a replacement for the SAS70 framework.
ISAE 3402 report
ISAE 3402 | SOC1
Third Party Risk and ISAE 3402
From full outsourcing of complex functions like IaaS, PaaS services, or component manufacturing to small contracts with local service providers and suppliers, organizations in different industries with different magnitude rely heavily on third-party service organizations.
ISAE 3402
ISAE 3402 | SOC1
Why is ISAE 3402 so much in demand these days?

Many organizations focus on their 'core' activities. Non-core activities are outsourced to other organizations.

cyber
Standards
Security Operations Center

Every organization has digital crown jewels that need to be protected. Your company probably protects personal and company data with tools such as firewalls, antivirus software and intrusion detection.