Multacom Successfully CompletesType 2 SOC2Examination
Multacom, a web host specializing in co-location, dedicated server and shared hosting solutions, announces thatall of its data centers at 707 Wilshire Blvd. in Los Angeles, including its newestdata center location,have successfully completed a Type 2 SOC 2 examination.The scope of the examination covered Multacom’s colocation services as they relate tothe SOC 2 principles of security and availability. The examination was completed byBrightLine CPAs & Associates, Inc., the only company in the world that is a CPA firm, a globally licensed PCI Qualified Security Assessor, an ISO Certification Body and a FedRAMP 3PAO.
The examination is an independent evaluation of the effectiveness of Multacom’s controls relevant to security and availabilityin its operations and its adherence to the Trust Service Principles of SOC 2, which are modeled around four areas: Policies, Communications, Procedures, and Monitoring. Each principle has specificallydefined criteria and controls,which must be met to demonstrate compliance.These reports are intended for the stakeholders of an organization that need to understand the internal controls in place as they relate to security, availability, processing integrity, confidentiality and privacy.
“We felt it was very important to bring in a credible outside source to evaluate our standards,”shares Kiarash Jahangiri,CEO of Multacom. “The rigorous evaluation by an accredited third party gives our stakeholders the objective information they need to understand our operational systems andinfrastructure. They can now do their own due diligence and refer to this report to confirm we are meeting their own internal requirements and exigencies when it comes to security and availability.”
SOC 2 reports are an alternative to SOC 1 (SSAE 16) specifically for organizations that hold and store information for clients, such as data centers and managed services. The Type 2 report is more involved than a Type 1 andis comprised of an examination over a period of timeby a licensed CPA firm evaluating the suitability of the design and operational effectiveness of controls and systems in place, as well as testing andproviding evidence of how these controls are used and implemented. Security is evaluated based on the system’s protection against any unauthorized access or use, while availability is reviewed based on the system being available as stipulated in the organization’s agreement with clients. Some of Multacom’s commitments include on-site security and technical support 24 hours per day, a multi-tier access control system and 100% network and power uptime. Multacom will be completing the Type 2 SOC 2 examination for their data centers annually.
“Security is and continues to be of utmost importance to Multacom,” says Jahangiri. “The decision to be re-evaluated every year is a testament to our commitment.”