SOC 3
SERVICES

“For over a decade, I have called upon Sarbey, Lexow & Kaufman to assist us with a wide variety of projects including assisting with acquisitions, conducting internal audits of our various locations and performing financial statement audits of our subsidiaries.  In each case, their team has delivered with professionalism and technical expertise on par with that of the national firms, along with the personal attention of a smaller organization.”  

- Robert H. Lazar, Chief Financial Officer, EVI Industries, Inc.

WHAT ARE SOC 3 REPORTS?

SOC 3 SERVICES

“Sarbey, Lexow & Kaufman's experience has been invaluable to us; enabling us to develop an internal audit oversight function that allows us to monitor internal controls at our hotels.”

- Omar Palocios, Former Executive VP & CFO, Playa Hotel & Resorts

WHAT ARE SOC 3 REPORTS?

DOES MY ORGANIZATION NEED A SOC 3 REPORT?

If your organization is providing, or plans to provide, services to other large businesses, expect to receive requests for a controls report. Therefore, we recommend reviewing your organization’s business strategy to determine if a SOC report is an appropriate investment for your future client base or an initiative to differentiate your organization from your competition. In addition, if you currently have a SOC 1, you may receive requests to provide a SOC 2 or SOC 3 as well, to demonstrate controls to protect your client’s data.

WHAT ARE THE DIFFERENT TYPES OF SOC 3 REPORTS?

Type 1 reports on the fairness of the presentation of management’s description of the service organization’s system and the suitability of the design of the controls to achieve the related control objectives included in the description as of a specified date.

Type 2 reports on the fairness of the presentation of management’s description of the service organization’s system and the suitability of the design and operating effectiveness of the controls to achieve the related control objectives included in the description throughout a specified period.