SOC Examination: Is there a SOC certification similar to an ISO 27001 certification?

June 15, 2015

Is there a SOC certification similar to an ISO 27001 certification?

SOC reporting actually is not considered a certification. As the SOC reports are performed under AICPA attestation standards, they are considered attestation reports. The attestation reports provide an opinion by an independent practitioner/auditor attesting to certain elements about the control environment of a service organization, depending on the SOC report or attestation standard. This is different than an ISO certification that determines an organization’s conformity of their information security management system (ISMS) to the ISO 27001 standard.

Previous Article
ISO/IEC 27001:2013 Initial Certification – What Do I Need To Know?
ISO/IEC 27001:2013 Initial Certification – What Do I Need To Know?

When it comes to undergoing an ISO/IEC 27001:2013 (ISO 27001) certification audit, the initial certificatio...

Next Article
SOC Certification Similar to ISO 27001 Certification?
SOC Certification Similar to ISO 27001 Certification?

Is there a SOC certification similar to an ISO 27001 Certification?