An agreed upon procedures engagement is an independent assessment of a pre-determined procedure or set of procedures. In addition to meeting certain vendor requirements, you can use an agreed upon procedures report to broaden the scope of a SOC 1 or SOC 2 report or provide your management with additional insight into specific procedures.
Focal Point can provide your organization with an independent assessment of a specific process or processes in conjunction with your SOC examination. Focal Point has teams of finance, privacy and security experts equipped to test a variety of financial and operational procedures.
At the outset of an agreed upon procedures assessment, we assist your management team in creating an appropriate description of the subject matter and determining the proper procedures for testing. After defining the subject matter and determining the appropriate procedures, we test the procedures and report on our findings. Our agreed upon procedures report includes:
An agreed upon procedures report will assure your clients and other stakeholders that your processes are effective and meet business objectives. Additional benefits include:
Focal Point Data Risk, LLC ("Focal Point") is associated with Sunera CPAs & Associates LLP (“Sunera CPAs”), a registered CPA firm through an alternative practice structure. The two companies are separate legal entities that work together to serve critical business needs. Focal Point offers risk management consulting services and is not a licensed CPA firm. Sunera CPAs & Associates LLP provides SOC attestation services. Focal Point and Sunera CPAs are subsidiaries of Cyber Risk Management, LLC.