The ChangeUp team is pleased to share the news that they have recently completed their System and Organization Controls (SOC) 2 Type II Audit Industry-Standard Accreditation for the second year in a row.
The SOC 2 audit is one of the world’s highest-recognized information security compliance standards. It was developed by the American Institute of CPAs (AICPA) to allow a third-party auditor to validate a service company’s internal controls for information security.
ChangeUp obtained its audited SOC 2 Report by partnering with Colorado-based Johanson Group, which reviewed the company’s internal controls including policies, procedures, and infrastructure regarding data security, firewall configurations, change management, logical access, backup management, business continuity and disaster recovery, security incident response, and other critical areas of the business.
Thanks to a company-wide effort at ChangeUp, they achieved SOC 2 compliance for the second year. ChangeUp can confidently say they go above and beyond the minimum requirements for SOC 2 by integrating their critical infrastructure to monitor compliance with the SOC 2 framework 24/7, not just during the audit window.
“I am grateful to our team for again achieving the highest standards of excellence with SOC compliance for another year. Further, our software and architecture have successfully passed penetration testing by independent auditors. We are proud to ensure our enterprise-level clients’ safety and security.”
– Bob Soderstrom, ChangeUp CEO
ChangeUp’s relationship with its customers is built on trust. The successful completion of its SOC 2 Report is one of many ways they have planned to earn and retain that trust. SOC 2 is just one aspect of their growing security program. ChangeUp is committed to continually improving our information security program and retaining an annual SOC 2 audit to ensure they keep supporting their customers’ needs.