Thought Industries Boosts Security Posture with Successful Completion of SOC 2 Type 2 Examination and HIPAA, PCI Assessments
Latest compliance achievements further demonstrate the company’s commitment to customer privacy and data security
Thought Industries, the leading external enterprise learning platform for customer, partner, and professional training, today announced the successful completion of its System and Organizational Controls (SOC) 2® Type 2 examination on controls relevant to Security, Availability, and Confidentiality, for external enterprise learning management services. The company also completed its HIPAA and PCI DSS SAQ-D assessments.
Developed by the American Institute of Certified Public Accountants (AICPA), the SOC 2® Type 2 examination provides reasonable assurance to users about the suitability of the design of the company’s controls placed into operation along with their operating effectiveness against the relevant Trust Services Criteria for a period of time.
The Health Insurance Portability and Accountability Act (HIPAA) assessment shows adherence to the federal law that requires organizations to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge. The HIPAA audit examines the effectiveness of how Protected Health Information is stored and protected.
The Payment Card Industry Data Security Standard Self-Assessment Questionnaire (PCI DSS SAQ-D) assessment documents that Thought Industries has upheld security standards to protect cardholder data.
Organizations who rely on outside vendors to perform activities that are essential to their business operations are finding a need for more trust and transparency into their service providers’ operations, processes, and solutions. The completion of the SOC 2 examination, and the HIPAA and PCI assessments demonstrates Thought Industries prioritization of the security and privacy of its clients’ data, said Mary Sparks, VP of Information Security.
“Our customers require detailed information and assurance about the system of controls we’ve implemented to protect the data we process on their behalf,” Sparks said. “Obtaining a SOC 2 Type 2 examination along with HIPAA and PCI assessments, that were performed by an accredited third party, demonstrates our commitment to data security best practices.”
Thought Industries chose 360 Advanced, Inc., a licensed CPA firm, to perform the demanding third-party SOC examination and the PCI and HIPAA assessments. Other 360 Advanced cybersecurity and compliance offerings include HITRUST, ISO 27001, penetration testing, and more.