Lifeline Data Centers is SSAE 18 SOC 2 Certified. Standards for Attestation Engagements (SSAE 18) is a series of enhancements aimed to increase the usefulness and quality of SOC reports, now, superseding SSAE 16, and, previously, SAS 70.
The SOC 2 report focuses on a business’s non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality, and privacy of a system, as opposed to SSAE 18 SOC 1 which is focused on the financial reporting controls.
How SSAE 18 SOC 2 benefits your organization
The Trust Service Criteria, which SOC2 are based upon, are modeled around four broad areas: Policies, Communications, Procedures, and Monitoring. Each of the criteria have corresponding points of focus, which should be met to demonstrate adherence to the overall criteria and produce an unqualified opinion (no significant exceptions found during your audit). One benefit to the trust services criteria is that the requirements are predefined, making it easier for business owners to know what compliance needs are required of them and for users of the report to read and assess the adequacy.
Lifeline Data Centers is considered compliant with FISMA and maintains a current SSAE18 SOC2 Audit Report. We also have a full list of certifications. For more information on Lifeline Data Centers and FISMA, check out some of our articles:
What is SSAE 18?
SSAE 18 is a series of enhancements aimed to increase the usefulness and quality of SOC reports, now, superseding SSAE 16, and, obviously the relic of audit reports, SAS 70. The changes made to the standard this time around will require companies to take more control and ownership of their own internal controls around the identification and classification of risk and appropriate management of third party vendor relationships. These changes, while, not overly burdensome, will help close the loop on key areas that industry professionals noted gaps in many service organization’s reports.