SOC stands for "System and Organization Controls" and is the agreed-upon control procedure set by the American Institute of Certified Public Accountants (AICPA). These defined sets of controls are a series of standards or benchmarks designed to help measure how well a given service organization conducts and regulates its information. The training is focused on the "Do it yourself" ("DIY"") concept. The SOC DIY training series is designed to educate learners in implementing SOC.

The training will help organizations to have the in-house skill and end-to-end knowledge in deciding the type of certification, type of documentation, type of skills, and type of controls required to certify. Part VI educates the user about vendors due to diligence and the use of SOC2 reports. You will learn how user organizations can adopt the SOC report, identify the relevant report user organization will need from a vendor, and understand the report content and different types of SOC reports.

You will learn to interpret and evaluate the SOC report content (explained with the report examples): - Independent Service Auditor Report - Management Assertions - Overview of Operations - Relevant Aspects of the Control Environment - Description of the System - Description of Control Objectives, Control, and Results of Testing - Complementary User Entity Controls - Other Information Provided by Management In this course, you will be asked to read through lessons, participate in learning activities, and partake in knowledge checks designed to reinforce learning followed by the end of the course final assessment.