SOC1, SOC2, SOC3 (SSAE 18) Compliance Training

Today's businesses have seen a dramatic increase in the use of outsourced providers to assist with executing processes from payroll, accounts payable, information technology, benefit plan administration and many other core processes. These processes ultimately have an impact on an organization's internal control over financial reporting but also could impact compliance and operational issues. In 2011, the Statement on Standards for Attestation Engagements (SSAE) 16 replaced the former Statement on Auditing Standards (SAS) 70. In May 2017, a new standard, SSAE 18, superseded SSAE 16.

Training Logo

The concepts covered in this course are referred to as a Service Organization Control Report (SOC). Organizations who utilize outsourced providers should understand the various types of SOC reports, their intended use and their implication on a company's financial reporting process, regardless of your status as a publicly traded or privately held organization

  • Duration
    40 hours
  • Batches
    Customizable as per your need
  • Suitable for
    professionals, students etc.
  • Course Details
    Download PDF
What you will learn
  • Explore the transition of the accounting standards from Statement on Auditing Standards (SAS) 70 to Statement on Standards for Attestation Engagements (SSAE) 16 and now SSAE 18.
  • Recognize the various types of service and subservice organizations.
  • Explore procedures to conduct a SOC (Service Organization Control) 1 engagement, develop proper control objectives and determine specific reporting methods.
  • Explore procedures to conduct and report on a SOC 2 engagement
  • Recognize the requirements for SOC 3 reports.
  • Explore the SOC cybersecurity requirements.
  • Recognize the requirements to prepare for a SOC engagement.
  • Recognize the requirements for user entities

Course Agenda


SOC1 is applicable to Financial Systems in the Organization

  • Type 1
  • Type 2


SOC2 is applicable to Security Controls of the Organization

  • Type 1
  • Type 2


SOC3 is for Cyber trust and System trust, intended mainly for the security of web-based applications in the Organizations.

  • Type 1
  • Type 2

Why Choose us?

Over 200 classes are scheduled conveniently every year with small training groups and industry experienced faculties that provides:

  • One-Stop shop for IT Training
  • Companywide IT Training Solutions
  • Interactive Teaching Methodology
  • Job Oriented Training Solutions
  • Flexible modes of training
  • Recorded sessions are available
  • Live Project Experience

In a hurry? Let's chat!

Contact us on Whatsapp
Our Locations