Sandy Alexander, a leader in integrated multi-channel communications solutions headquartered in Clifton, NJ, announced today that it has successfully completed an independent CPA audit of the IT security controls surrounding its systems and data – SSAE 16, SOC 1. Addressing security and privacy safeguards for customers, SOC 1 standards require physical security and environmental controls over systems and data; confidentiality of data; disaster recovery including backup and recovery of data; network, database, application access and security; network and systems monitoring; manual processing controls; and application change management. SOC 1 standard compliance is crucial to companies in any security conscious industry, including finance, automotive, healthcare, retail, hospitality and travel.
Sandy Alexander President and CEO Michael Graff stated, “Our clients entrust us with receiving, processing, and transmitting their customer-related data which drives the success of their businesses.” Graff continued, “We place a great deal of importance on keeping our customer data secure, as well as the integrity and ethical values of all company personnel. Our company has a proactive philosophy and a ‘hands-on’ operating style that emphasizes the responsibility and ownership of work by individuals.”
The Company plans to make the SOC 1 audit report available to any clients or potential clients that wish to review the specific controls tested, including the results of testing by the audit firm. Sandy Alexander will maintain its vigilance regarding operating excellence through continuous improvement of its quality management procedures. The company has already begun the audit process for SOC 2 and HIPAA, and expects to be compliant by September 2015.