Information technology - standards.

A SOC 1 report is written documentation of the internal controls that are likely to be relevant to an audit of a service organisation's customer’s financial statements.

A Type 2 SOC 1 report covers the effectiveness of the control design over a period of time.

See also

• Information security management system
• Information technology
• Internal control
• ISO 27001
• Risk management
• Security
• SOC 1 report