Turazo Maintains Effective Security Controls According to Recent SOC 2SM Report

 San Francisco, CA - May 20, 2021 – Today, Turazo announced that the company has undergone a System and Organization Controls (SOC) 2SM examination resulting in a CPA’s report stating that management of Turazo maintained effective controls over the security, availability, and confidentiality of its software system. The engagement was performed by BARR Advisory, P.A.



A SOC 2SM report is designed to meet the needs of existing or potential customers who need assurance about the effectiveness of controls at a service organization that are relevant to the security, availability, or processing integrity of the system used by the service organization to process customers’ information, or the confidentiality or privacy of that information.

"We are pleased that our SOC 2SM report has shown that we have the appropriate controls in place to mitigate risks related to security, availability, and confidentiality and HIPAA Security Rule Requirements,” said CEO Pete Cipollone. “These principles are extremely important to our company’s business and clients.”

The following principles and related criteria have been developed by the American Institute of CPAs (AICPA) and the Canadian Institute of Chartered Accountants (CICA) for use by practitioners in the performance of trust services engagements:

● Security. The system is protected against unauthorized access (both physical and logical).
● Availability. The system is available for operation and use as committed or agreed.
● Confidentiality. Information designated as confidential is protected as committed or agreed.
● HIPAA Security Rule Requirements. The BI360 system and applicable controls are compliant with the applicable HIPAA Security Rule requirements set forth in the U.S. Department of Health and Human Services’ (HHS) Health Information Portability and Accountability Act

A SOC 2SM report is an internal control report on the services provided by a service organization to its customers and provides valuable information that existing and potential customers of the service organization need to assess and address the risks associated with an outsourced service.

Current and prospective customers interested in a copy of our SOC 2SM report may contact Kim Grant.

ABOUT Turazo

Turazo software helps customers' talent organizations Connect Better. Whether creating authentic, inclusive candidate experiences or growing and retaining current teammates through mentorship and internal mobility, Turazo networks deliver human-to-human connections with high engagement, actionable data streams, and real results. Located in San Francisco, Turazo customers include enduring brands such as AT&T, Microsoft, Xerox and Under Armour. For more information, contact Kim Grant (617-901-9628; kim@turazo.com). Connect with us on Twitter and LinkedIn.

ABOUT BARR Advisory

BARR Advisory is a cloud-based security and compliance solutions provider, specializing in cybersecurity and compliance for Software as a Service (SaaS) companies. A trusted advisor to some of the fastest growing cloud-based organizations around the globe, BARR simplifies compliance across multiple regulatory and customer requirements in highly regulated industries including technology, financial services, healthcare, and government.

BARR Advisory services include:

• Compliance Program Assistance
• SOC 1 Examinations
• SOC 2 and 3 Examinations
• SOC for Cybersecurity
• PCI DSS Assessment Services
• ISO 27001 Assessments
• FedRAMP Security Assessments
• HIPAA, HITECH, and HITRUST Services
• Penetration Testing and Vulnerability Assessments
• Virtual CISO services

Learn more at barradvisory.com.

Leave a Comment