WACO, TX – April 9, 2013 – Profiles International, Inc., (Profiles) the leading talent management solutions provider for organizations worldwide, announced that the company has successfully completed Service Organization Control (SOC) audits conducted by award-winning accounting firm Whitley Penn LLP. The SOC 2 and SOC 3 reports state Profiles maintains effective controls over the security, availability, and confidentiality of its talent management solutions systems.
Whitley Penn recently completed the SOC examinations of Profiles in accordance with the newer, more rigorous AT 101 standards following The American Institute of Certified Public Accountants (AICPA) Trust Services. SOC 2 and SOC 3 provide much more stringent standards than the former SAS 70 - with a stronger set of controls and requirements.
Profiles is the only talent management solutions provider to meet the SOC 2 and SOC 3 requirements. All organizations who are concerned about the security, availability, and confidentiality of their information when working with service providers will find the AICPA Trust Services standards to be a requirement moving forward. This is especially important in highly-regulated industries like healthcare and finance.
"Our clients have always relied on the confidentiality of our assessment and survey reports, as well as the customer information they choose to share with us,” said Sia Ahmadzadeh, Senior Vice President, IT and Product Services. “Assurance of Profiles data and system security is also a frequent point of inquiry, and the availability of our systems is key for every customer who relies on our assessment products and services in the course of doing business. Profiles International takes these aspects of system and data security very seriously in the development and delivery of services to our customers.”
The SOC 3 report is designed to meet the needs of existing or potential customers who require assurance about the effectiveness of controls at a service organization. These controls are relevant to the security, availability, or processing integrity of the system used by the service organization to process the customers’ information, or the confidentiality or privacy of that information. Current and prospective customers interested in a copy of Profiles' SOC 3 report may visit: www.profilesinternational.com.
The SOC 2 report goes into much more detail about a service provider’s systems and controls.
This report is available upon request.
The following principles and related criteria have been developed by the AICPA and the Canadian Institute of Chartered Accountants (CICA) for use by practitioners in the performance of trust services engagements:
- Security. The system is protected against unauthorized access (both physical and logical).
- Availability. The system is available for operation and use as committed or agreed.
- Confidentiality. Information designated as confidential is protected as committed or agreed.
With the completion of a security audit focused on these trust principles, and the subsequent issuance of the reports, Profiles has demonstrated a commitment to terms established by internationally-recognized standards bodies. The reports provide third-party assurance to customers that Profiles International’s internal controls are appropriate and effective to these ends.
Source: Profiles International