SkillSmart Achieves SOC2 Compliance: Supporting and Protecting Our Clients
At SkillSmart our priority is to provide our clients with best-in-class technology and services to help them demonstrate the economic impact they’re having in their communities while ensuring compliance. A key step in achieving this priority is providing our clients the assurance that our technology and their data is protected with a high degree of security. We have always taken this commitment seriously and this week we successfully completed System and Organization Controls (SOC) 2 Type II Audit.
The SOC 2 audit is one the highest recognized standards of information security compliance in the world. It was developed by the American Institute of CPAs (AICPA) to allow a third-party auditor to validate a service company’s internal controls with respect to information security.
We obtained our audited SOC 2 Report by partnering with Johanson Group who respectively reviewed our internal controls including policies, procedures, and infrastructure regarding data security, firewall configurations, change management, logical access, backup management, business continuity and disaster recovery, security incident response, and other critical areas of our business.
Thanks to a company-wide effort over the past six months we successfully achieved SOC 2 compliance and received an Auditor’s Report, which we are happy to share with you to demonstrate our commitment that our policies, procedures, and infrastructure meet or exceed the SOC 2 criteria. In fact, we can confidently say we go above and beyond the minimum requirements for SOC 2 by integrating our critical infrastructure to monitor compliance to the SOC 2 framework 24/7/354, not just during the audit window.
Our relationship with our clients and future clients is built on respect for their efforts and the trust that we will work each day to help make them successful. The successful completion of our SOC 2 Report is one of many ways in which we seek to build and retain that trust.
We are committed to continually improving our technology, our services and our information security program to ensure we keep supporting our client’s needs.