OneNeck® IT Solutions has announced completion of the System and Organization Controls (SOC) attestation segments of the American Institute of Certified Public Accountants (AICPA) Statement on Standards for Attestation Engagements (SSAE) 18 examination.

The SSAE 18 examination replaces SSAE 16. The most noticeable difference is the additional information required, along with added scrutiny of the information provided, which now includes date/time stamp evidence and queries for how certain populations are generated. The SSAE 18 also retains the stringent requirements of the SSAE 16, such as addressing clarity, length and complexity of many AICPA standards.

“We continually strive to meet the most rigorous standards,” stated Dave Flynn, SVP of operations and engineering at OneNeck. “It’s our way of ensuring our customers that we have the controls in place to protect their mission-critical IT infrastructure within our data centers.”

OneNeck hired Schellman & Company, LLC, a third-party certified public accounting (CPA) firm, to perform and complete the thorough examinations. The auditors leveraged the SSAE 18 guidelines when performing and reporting on a company’s SOC examinations.

Schellman & Company reviewed OneNeck’s top-tier data centers in Arizona, Colorado, Iowa, Minnesota, Oregon and Wisconsin. Upon completion of the examination, Schellman & Company opined on OneNeck’s description of their systems and suitability of design of controls for the SOC2 Type 1 for ReliaCloud/IaaS (new for 2017). In addition, Schellman & Company also put forth opinion on the description of OneNeck’s system and the suitability of the design and operating effectiveness of controls for the following Type 2 reports:

  • SOC1 Type 2 for Colocation Services 
  • SOC1 Type 2 for ReliaCloud/IaaS 
  • SOC1 Type 2 for Enterprise Application Management/Managed Services 
  • SOC2 Type 2 for Colocation Services