Heeter announced in June the successful completion of its Service Organization Controls (SOC) 2, Type II attestation report. The audit report documents that Heeter’s information security practices, policies, and procedures are suitable to meet the SOC 2 trust principles criteria for security, availability, and confidentiality.
SOC 2 audits are based on the AICPA’s Trust Services Principles. SOC 2 service auditor reports focus on a Service Organization’s non-financial reporting controls as they relate to security, availability, and confidentiality of a system. Our service auditor The Moore Group, CPA LLC verifies the suitability of the design and operating effectiveness of Heeter’s controls to meet the criteria for these principles.
During the examination, the independent auditors evaluated and tested controls over the following domains:
- Organization and management
- Communications
- Risk management and design and implementation of controls
- Monitoring of controls
- Logical access controls
- Systems operation
“Information security is a major focus at Heeter,” said Scott Heeter. “We invest in the people and technology to protect our customer’s information. Heeter will continue to participate in future SOC 2 audits to ensure that it is compliant with these very high standards.”
To view the report, please contact Tom Boyle, VP of Sales and Marketing.
