Understanding SOC Reports: Learn the Basics from a Pro

In today’s world, organizations are consistently being asked by key vendors and customers to demonstrate compliance with a basic internal control framework. There are many options available to these organizations but one of the most widely used vehicles to accomplish this task is the system and organization control (SOC) report.

Although the SOC report is a commonly used internal control reporting tool, the concept is not as well understood as it should be in the general business community. You often hear the term “we are SOC/SSAE certified” but what does this really mean? Is a SOC report a “certification”?

Join Buchbinder’s Michael Pinna for a one-hour webinar where he provides valuable oversight and guidance on the SOC reporting process.

You’ll learn:

  • What is a SOC report and why your organization may consider performing one
  • Why internal and risk controls are important for your organization
  • The different types of SOC reports
  • What is included in a SOC report and what isn’t


Download the presentation slides here.

Meet Your Host

Michael Pinna, IT Audit Director


michael pinnaWith over 25 years of experience working in Information Technology, Michael is the practice leader for Buchbinder’s IT Audit & Assurance Group. He provides IT audit and assurance services with a focus on Service Organization Controls (SOC) reporting. Michael also specializes in IT risk assessment and vulnerability scan, compliance management, security and privacy risks, Sarbanes-Oxley IT controls, disaster recovery, and business continuity training. In addition, he handles documentation and testing of IT controls in support of the firm’s audit clients in a variety of industries.

Join Our Newsletter

Sign up to receive exclusive newsletters with the latest information affecting you and your organization.

Posted in