GLOSSARY

SOC 1

Blog
Guides
Glossary

Terms

What is SOC 1?

A Service Organization Control 1 or SOC 1 report is documentation of the internal controls that are likely to be relevant to an audit of a customer's financial statements.

There are two types of reports for these engagements:


  • Type 1 – report on the fairness of the presentation of management’s description of the service organization’s system and the suitability of the design of the controls to achieve the related control objectives included in the description as of a specified date.
  • Type 2 - report on the fairness of the presentation of management’s description of the service organization’s system and the suitability of the design and operating effectiveness of the controls to achieve the related control objectives included in the description throughout a specified period.


Use of these reports is restricted to,  your company, your customers, and your auditors. If you’d like a report you can share publicly, you may want a SOC 3.

Vanta is the easy way to get SOC 2, HIPAA, or ISO 27001 compliant. Over 1000 fast-growing companies trust Vanta to automate their security monitoring and get ready for security audits in as little as two weeks. Simply connect your tools to Vanta, fix the gaps on your dashboard, and then work with a Vanta-trained auditor to complete your audit. We'll guide you throughout the process and help tailor your security monitoring and compliance to meet the needs of you and your customers. Vanta was founded in 2017 and headquartered in San Francisco.

Products
SOC 2HIPAAISO 27001
Customers
Customer Case Studies
Resources
BlogGuidesGlossary
Company
AboutCareers
Vanta automates compliance starting with SOC 2
Please enter your first name
Please enter your last name
Please enter a valid email address
Please enter a job title
Please enter your company name
Please enter your company website
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.