Eventus, a global provider of trade surveillance software across all lines of defense, has successfully completed its System and Organization Controls (SOC) 2® Type 2 examination on controls relevant to Security, Availability and Confidentiality for trade surveillance services.
Developed by the American Institute of Certified Public Accountants (AICPA), the SOC 2 Type 2 examines a service provider’s internal controls and systems related to security, availability, processing integrity, confidentiality and privacy of data.
It provides stakeholders with reasonable assurance of the suitability of the design and operating effectiveness of a third-party provider’s controls and systems when evaluated against the relevant Trust Services Criteria for a period of time.
While SOC 2 is not a regulatory requirement, Eventus has chosen to demonstrate the effectiveness of its security controls using the SOC 2 framework to provide assurance to existing and potential clients that the firm is meeting rigorous parameters to keep their data safe.
Josh Bosquez, Eventus Chief Technology Officer, said: “As a leading global trade surveillance organization responsible for the management of highly sensitive data, we hold ourselves to the highest possible standards.”
“This includes adhering to the most stringent security parameters to ensure that our clients have the utmost confidence that we are protecting the integrity and privacy of their data.”
Eventus chose 360 Advanced, Inc., a licensed CPA firm, to perform the demanding third-party SOC examination.
“360 Advanced has a distinctive approach to client collaboration beyond the conventional role of an auditor,” Bosquez said.
“In addition to fulfilling the duties of an auditor, the company has proven to be invaluable, providing comprehensive guidance and steadfast direction throughout the entirety of the compliance process,” he added.