SOC 2 Type II Examination Demonstrates Effective Security Policies and Procedures

NASHVILLE – Advanced Network Solutions (ANS) announced the successful completion of another Systems and Organization Controls 2 (SOC 2®) Type II audit. The Nashville-based managed service provider maintains documentation on an annual basis that their controls assure clients that the provider’s processes and people can be trusted to continuously adhere to strenuous standards.


Completion of the SOC 2 Type II process indicates that selected Advanced Network Solutions’ processes, procedures, and controls have been formally reviewed and tested by an independent accounting and auditing firm. Developed by the AICPA, a SOC 2 Type II report is widely recognized, because it represents that a service organization has been through an evaluation of their control activities as they relate to the applicable Trust Services Principles and Criteria. A Type II report includes the service organization’s system description, as well as a detailed testing of the operating effectiveness of the service organization’s controls. This differs from a Type I report, which is a less rigorous process that does not prove the long-term effectiveness of the controls.


“This accomplishment is especially impactful for the Advanced Network Solutions team and the clients we serve as security continues to be a top concern for all businesses in our current technology environment,” explained Richard Pinson, CEO of Advanced Network Systems. “We obtained our first SOC 2 Type II report with zero exceptions in 2018 and this most recent audit underscores our commitment to maintaining security standards in our company’s technology, processes, and personnel along with the highest level of privacy and security for our customers.”


ANS extends the effectiveness of the independent third-party audit by doing a cross-walk with other compliance standards, specifically HIPAA, DFARS, and NIST 800-171. These standards are important for many highly regulated industries such as healthcare, manufacturing, banking, legal, non-profit, and others. These efforts contribute to a forward-thinking initiative to support clients for their Cybersecurity Maturity Model Certification (CMMC) audit, a verification mechanism designed to ensure that cybersecurity controls and processes adequately protect Controlled Unclassified Information (CUI) that resides on systems and networks. CMMC will be a requirement for businesses wishing to bid on Department of Defense (DoD) contracts beginning in late 2020.


Advanced Network Solutions has served Middle Tennessee and surrounding states as a strategic technology success partner since 1997. ANS provides results by first obtaining a deep understanding of a company’s business, then providing strategic IT planning and technology management utilizing a proven team-based service and delivery model. Their comprehensive IT services and experience enable businesses to leverage technology to accomplish business goals. Advanced Network Solutions is locally-owned and operated in Nashville.