TPR2309. Day 2 Welcome and Maximize Your Value of the SOC 2 Report

This session will review the application of the 2022 Trust Services Criteria and most recent illustrative report. Specific emphasis will be on defining system boundaries, providing a sufficient system description, defining principal service commitments and system requirements, evaluating subservice organizations vs. vendors, considering relevance of complementary user entity controls, mapping controls to the relevant criteria, applying the Privacy category, including other third party criteria, ensuring sufficient testing procedures and clear presentation in the report, mapping risk considerations, reporting on other information, and ensuring most value from report usage and distribution.


Learning Objectives:

  • Identify the 2022 Trust Services Criteria and illustrative reports
  • Identify how to include relevant content within the SOC 2 report
  • Identify opportunities to improve the report presentation
  • Recognize recent changes and key considerations
  • Recognize the value of the report for users
Date/Time
CPE Credits
1.0
NASBA Field of Study
Specialized Knowledge
Level
Intermediate
Prerequisites
3-5 Years in the Profession
Advanced Preparation
N/A
Speakers
Image of Katherine Kaewert

Katherine Kaewert

Advisory Senior Manager
Deloitte & Touche LLP
Image of Steven Ursillo

Steven Ursillo

CPA, CISA, CISSP, CCSFP
Partner | National Leader Information Assurance and Cybersecurity
Cherry Bekaert LLP
Image of Chris Kradjan

Chris Kradjan

CPA, CITP, CRISC, HITRUST CCSFP
Managing Partner
Moss Adams LLP