Highland Solutions Announces the Company’s Successful Completion of the SOC 2 Type II Audit

Chicago, IL (PRWEB) July 25, 2014

Highland Solutions, a global enterprise technology and business solutions consultant, is pleased to announce the company’s successful completion of the Service Organization Control (SOC) 2 Type II audit. Completion of the audit indicates that the policies, communications, procedures and monitoring of controls have been implemented by Highland Solutions and tested by an independent certified public accounting firm.

“The significance of this certification is that our clients can feel confident that Highland is just as committed to the security and integrity of their data and systems as they are,” stated Jeff Nixon, chief operating officer of Highland Solutions. “With strong internal controls, and the ability to build secure and client-centric business solutions, we are able to help our clients achieve their goals of being more productive, competitive and compliant.”

Highland Solutions’ audit included a full evaluation of the following:

Security, ensuring the system is protected against unauthorized access (both physical and logical);
Availability, indicating the system is available for operation and use as committed or agreed; and
Processing integrity, confirming the system processing is complete, accurate, timely and authorized.
“Highland Solutions’ focus on strong internal controls is evident in this report,” says Jim Jimenez, managing partner at SSAE 16 Professionals, LLP. “The successful completion of this audit is a testament to Highland Solutions’ integrity, accountability, and its commitment to its clients.”

The audit undergone by Highland Solutions was conducted in accordance with the AICPA SOC reporting standards. The audit was conducted by SSAE 16 Professionals, LLP, a full service PCAOB registered CPA firm providing SSAE 16 (SOC 1), SOC 2, and SOC 3 audits. SSAE 16 Professionals, LLP evaluated Highland Solutions’ design and operating effectiveness of internal controls and processes related to the Security, Availability and Processing Integrity Trust Services Principles.

The report reaffirms Highland Solutions’ commitment to operational excellence and specifically covers controls relevant to Security, Availability and Processing Integrity.

About SSAE 16 Professionals

SSAE 16 Professionals, LLP is one of the nation’s leading firms specializing in SSAE 16 (SOC 1), SOC 2, and SOC 3 audits and readiness assessments. Each of our professionals has over 10 years of relevant experience at “Big 4” and other large international or regional accounting firms. Each professional is certified as a CPA (Certified Public Accountant), CISA (Certified Information Systems Auditor), CIA (Certified Internal Auditor), CISSP (Certified Information Systems Security Professional), and/or MBA (Master of Business Administration). For more information, visit SSAE16Professionals.com.

About Highland Solutions

Highland Solutions is a global provider of enterprise solutions at the nexus of business and client relationships. Through strategic partnerships and a deep understanding of our clients’ business processes, Highland Solutions has continuously evolved with the rapidly changing technology landscape. Our service offerings include custom development, cloud computing, systems integration, mobile applications, ecommerce, social business platforms and customer relationship management (CRM) systems. For more information, visit highlandsolutions.com.


Six Apart Selects UShareSoft to Deliver Movable Type on Multi-Cloud Infrastructures

Cloud Expo East, New York (PRWEB) June 12, 2012

UShareSoft today announced that it has been selected by Six Apart, provider of a leading social publishing platform, to simplify delivery of Movable Type to multiple cloud and virtualized environments.

UShareSoft’s UForge is a multi-OS, multi-cloud platform for building enterprise app stores and managing software image templates. Six Apart is using UForge to assemble full Movable Type application stacks as image templates ready for delivery to virtualization and cloud. Six Apart will also be using UForge to make the image templates available to customers, ISPs and channel partners.

UForge uses software modeling techniques, making it simple for Six Apart to quickly rip and replace different OS and middleware components without having to re-build their stack from scratch. Software modeling also streamlines maintenance, allowing Six Apart to quickly drop new releases into their existing model. Additionally, UForge supports all popular cloud infrastructures and hypervisor formats, enabling Six Apart to generate their final image templates at the push of a button, then publish directly to cloud.

We need to meet the infrastructure needs of all our Movable Type customers, regardless of the operating system, hypervisor or cloud environment they use, said Nobuhiro Seki, President and CEO, Six Apart. UForge makes it much simpler for us to support heterogeneous IT environments: we simply model once and deliver anywhere. By working with UShareSoft, we expect to turn customer deployments around faster, letting us scale our business more quickly.

Increasingly ISVs are looking to provide templates of their application stack, empowering channel partners and other ISVs to customize the stack for their own needs, said Alban Richard, CEO, UShareSoft. We’re very excited that Six Apart has chosen UShareSoft to help them meet new customer and partner requirements.

About Six Apart

Headquartered in Tokyo, Japan, Six Apart is the world’s leading company of the publishing platform for web content and social media including Movable Type, a publishing platform that includes Content Management System (CMS) functions that help users easily create and efficiently operate blogs and websites. Six Apart, originally founded in 2001 in San Francisco, the United States, was acquired by VideoEgg in November 2010, and Six Apart’s Japanese subsidiary assumes Six Apart brand and acquired Movable Type business worldwide. Six Apart is wholly owned by Infocom, a Japanese IT company listed on the Tokyo Stock Exchange. Learn more at http://www.sixapart.com

About UShareSoft

UShareSoft helps cloud providers, enterprises and ISVs simplify software delivery to cloud. UShareSoft’s UForge Cloud Software Factory and Enterprise App Store is a cloud software factory and enterprise app store platform that enables organizations to automatically build and migrate business-ready applications to private, public or hybrid clouds. Founded in 2008, UShareSoft has headquarters in Europe, an R&D center in Argentina, and offices in the United States and Japan. Visit http://www.usharesoft.com. Follow us on twitter.com/usharesoft

More Cloud Infrastructure Press Releases

GoGrid Announces SAS 70 Type II Report Validating Quality of GoGrid Portal Controlled Cloud Servers

San Francisco, CA (Vocus) August 5, 2008

GoGrid achieves another first with SAS 70 Type II Report from independent auditors who exhaustively inquired and physically inspected infrastructure, operations, processes and plans that GoGrid has in place. The SAS 70 Type II Report is the internationally recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA). The GoGrid audit was performed by a reputable public accounting firm that is an AICPA member. The SAS 70 Type II procedure results in an independent report on the design and control of GoGrid’s business processes.

GoGrid was first to the Cloud Computing server market with a unique web-based Graphical User Interface (GUI), Windows and Linux cloud servers, free f5 hardware load balancing, free 24×7 support, and an API.

Today, GoGrid announces another first: audited business processes and infrastructure conforming to international standards that confirms GoGrid’s quality, reliability and value.

GoGrid’s validated backoffice systems enable both hourly and monthly pricing and efficient variable unit pricing on RAM and bandwidth consistently delivering the most cost-effective solution. GoGrid’s icon-controlled business system delivers Linux and Windows servers that are “instant on” and scalable in seconds.

John Keagy, CEO and co-founder of GoGrid, states: “GoGrid is all about offering ‘Control in the Cloud.’ Whether our customers are developers using GoGrid for 90 minutes to test something or young companies avoiding capital expenditures with GoGrid multi-server networks in the cloud, all are reassured that their data and processes are securely and reliably hosted.”

Keagy went on to suggest that “GoGrid now certifiably deliverscontrol AND quality in the cloud.”

The SAS 70 Type II report validates that GoGrid’s description of certain relevant controls over information technology related to its San Francisco data center and virtual server hosting is fairly presented and that such controls have been suitably designed to achieve their specified control objectives. The favorable SAS 70 Type II report covers GoGrid as well as its parent company ServePath.

GoGrid believes that its award-winning GoGrid instant cloud server product may be the first ever GUI-controlled cloud computing solution with SAS 70 Type II certification. This validates flexible, scalable, instant GoGrid cloud servers as ready for mainstream server applications.

The GoGrid management controls audited in this report are broader in scope than many other virtualization providers. In addition to the physical security measures covered in a typical data facility, this report covers information security, incident management, network performance, data back-up, disaster recovery, redundancy, environmental security, change control, risk assessment processes, communications, monitoring of network, databases, systems, bandwidth utilization as well as Terms of Service and Service Level Agreements (SLAs).

About GoGrid:

GoGrid is the new Cloud Computing hosted internet service that delivers true “Control in the Cloud.” GoGrid enables system administrators, developers and IT professionals to create, deploy, and control load balanced cloud servers and complex server networks with full root access and administrative server control in minutes via a unique web control panel or API. GoGrid delivers portal controlled servers for Windows, multiple Linux operating systems (Red Hat Enterprise and CentOS) and supports application environments like Ruby on Rails. Free f5 hardware load balancing and other features give users the control of a familiar server environment with the flexibility and scalability of the cloud. GoGrid is a service of ServePath, LLC, San Francisco who received the same SAS 70 Type II Report that includes GoGrid.


More Cloud Servers Press Releases

ShoreGroup Maintains Type 2 SSAE 16 Examination Success

New York, NY (PRWEB) August 29, 2013

ShoreGroup, Inc., a premier managed services and management software development firm, announced that the company has once again achieved Type 2 Statement on Standards for Attestation Engagements 16 (SSAE 16) standards compliance. This achievement provides ShoreGroups global customers and channel partners with further assurance that managed services are being delivered in adherence with established security mandates that protect their business assets. The assessment included comprehensive independent analysis of ShoreGroups CaseSentry management platform and ShorePatrol managed service that verified operational controls and policies are in place to maintain a secure environment. This marks ShoreGroups fifth consecutive year of examination success including prior audits performed under SAS 70, the predecessor to the Type 2 SSAE assessment.

SSAE 16 is a standard put forth by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA). The Type 2 SSAE 16 service organization assessment provides independent third party verification that control activities described by ShoreGroup are suitably designed to meet specified objectives and were in place and operating effectively over a twelve-month period. The examination was conducted by BrightLine CPAs & Associates, Inc., a licensed and globally recognized CPA firm.

ShoreGroup is committed to maintaining stringent security and process controls for our customers. SSAE 16 examination success shows why customers the world over can commit their data securely to ShoreGroups CaseSentry

TabWare Cloud Computing for Maintenance Solution Passes SSAE 16 Type II Audit

Greenville, SC (PRWEB) February 18, 2014

AssetPoint, a leading Computerized Maintenance Management System / Enterprise Asset Management (CMMS / EAM) solution provider, announced their 8th consecutive successful completion of a thorough and rigorous audit of their cloud computing operational controls.

In accordance with the guidance contained in American Institute of Certified Public Accountants Statement on Standards for Attestation Engagements No. 16 (SSAE 16), Reporting on the Controls at a Service Organization, the audit evaluates suitability of the design and operating effectiveness of controls of the services provided to customers. SSAE 16 Type II audits ensure that AssetPoint provides a secure operational environment for its TabWare customers. AssetPoint passes the annual SSAE 16 Type II audits for system and data security year after year and maintains a formal disaster recovery process to ensure business continuity in the event of a disaster. Customers can rest assured that their TabWare data is secure and available 24/7/365.

AssetPoint performed the independent audit and extensive testing of control activities and effectiveness for its cloud solution and product effectiveness at managing financial transactions. AssetPoints service auditor tested the control activities to ensure that objectives are met, and following this rigorous examination, the auditing firm was able to issue a non-qualified opinion regarding each of the following areas:

AIS Network Receives SOC 1 Type II Attestation Report

Reston, VA (PRWEB) January 10, 2013

AIS Network, a leading provider of fully managed enterprise-class hosting, today announced that it has completed its semi-annual SOC 1 (Service Organization Control) Type II audit. This certification attestation verifies that AISN has the proper internal controls and processes in place to deliver high-quality services to its clients.

KirkpatrickPrice, a licensed CPA firm, performed the audit and appropriate testing of AISNs controls that may affect its clients financial statements. In accordance with SSAE 16 (Statement on Standards for Attestation Engagements), the SOC 1 Type II audit report includes AISNs description of controls as well as the detailed testing of its controls over a minimum six-month period.

AISN has taken considerable care in designing its systems for the highest levels of security, reliability and scalability, including developing a comprehensive set of security measures and practices to keep our customers data protected and safe, said AISN CEO Jay Atkinson.

We are pleased that our SOC 1 report shows that AISN has appropriate controls in place around security and availability to help mitigate risks and ensure that our clients data is highly secure.

Many of the AIS Network clients rely on their systems to process or store sensitive data, said Joseph Kirkpatrick, Managing Partner with KirkpatrickPrice.

As a result, AIS Network has implemented best practice controls demanded by their customers to address information security risks. Our third-party opinion validates these controls and the tests we perform provide assurance regarding the managed solutions provided by AIS Network.

Established by the American Institute of Certified Public Accountants (AICPA), SOC 1 Type II is a reporting on the controls at a service organization. This report is in compliance with the SSAE 16 auditing standards, which focus on the controls of a service organization that are relevant to an audit of a user entitys financial statements. The standard demonstrates that an organization has adequate controls and processes in place. Federal regulations such as Sarbanes-Oxley, Gramm-Leach-Bliley and the Health Insurance Profitability and Accountability Act (HIPAA) require corporations to audit the internal controls of their suppliers, including those that provide technology services.

About AIS Network

AIS Network takes businesses to the cloud. Now celebrating its 20th anniversary, hosting pioneer AISN is a leading provider of fully managed hosting for mission-critical applications, data and online businesses with demanding security, compliance and responsiveness requirements. Whether youre using our private cloud, public cloud, hybrid cloud, or good old-fashioned dedicated hosting, we take the worry out of your IT. Our world-class, disaster-resistant facilities and commitment to quality service ensure that our customers arent just satisfied they love us. Unlike many cloud hosting companies, AISN, a SSAE 16 Type II-compliant organization, personalizes client service at every level, inspiring full confidence that mission-critical data, applications and email are in reliable hands. Visit http://www.aisn.net.

About KirkpatrickPrice, LLC

KirkpatrickPrice is a licensed CPA firm, registered with the Public Company Accounting Oversight Board. By specializing in Service Organization Control Reports (SSAE, SOC 1, SOC 2, SOC 3), security audit services and compliance issues, the firm offers efficient expertise with relevant skills and qualifications for engagements governed by the AICPA and other data security best practices. The firms employees are certified with CPA, CISA, CISSP and other certifications critical to the audit process. http://www.kirkpatrickprice.com.


Fibernet Corp. Receives SOC 1 Type II Certification

Orem, UT (PRWEB) September 12, 2012

Fibernet Corp., local colocation and Internet Service Provider since 1994, has taken the next step in data center security certification with its newly awarded SOC 1 Type II report.

The Statement on Standards for Attestation Engagements number 16, or SSAE 16, includes SOC 1, or Service Organization Controls 1, as one of its certification reports. These have replaced the old SAS70 certification process, and satisfy the Sarbanes-Oxley Act of 2002.

The controls specify the procedures that service organizations (data centers) must follow for financial transaction security. Type I certification means that a business was compliant at the time of attesting. Type II certification takes an entire year of demonstrable compliance, and the SOC 1 standards must be followed throughout the whole year. Type II reports are more in-depth, and the best way of showing consistently high performance. The Cadence Group, a third-party accounting firm based in Salt Lake City, performed the attestation.

Regarding the certification, Fibernet CFO Lee Livingston said, This process has been underway for the whole of this past year, and were proud that we have this qualification as proof of our dedication to our customers. A Type I report is sufficient for some companies, but our Type II report shows that we mean business.

In April of 2009, Fibernet became the first data center in Utah to comply with and be certified in PCI standards. It is one of the first businesses in the world to become an approved service provider by the credit card industry.

About Fibernet Corp.

Fibernets products range from customizable Colocation solutions to an expanding variety of Dedicated, Managed, Virtual, and Cloud hosting packages and options. Each service is delivered with the Fibernet promise of reliability and value and backed up 24/7 by Dedicated Experts, an elite team of geniuses committed to keeping Fibernets customers online and ready for business.

Learn more about Fibernet Corp.s PCI and SOC 1 certified facilities by visiting http://www.fiber.net, where you can chat live with a Dedicated Expert.

NetHosting receives SOC 1 Type II Certification

Orem, UT (PRWEB) September 12, 2012

NetHosting, a leading global provider of cloud, dedicated, VPS, and Cloud Virtual Hosting solutions has taken the next step in data center security certification with its newly awarded SOC 1 Type II report.

Being SOC1 certified demonstrates that a business is sophisticated and dedicated to its customers, stated Lane Livingston, NetHosting CEO. And I feel we’re going the extra mile with the Type II qualification.

SOC 1, or Service Organization Controls 1, reports are a part of the new Statement on Standards for Attestation Engagements number 16, or SSAE 16, which has succeeded the older SAS70 reporting method. The controls describe how service organizations must handle security for financial transactions and information under the Sarbanes-Oxley Act of 2002. Type I certification only requires the service organization to be compliant at the time of the attestation, while Type II certification requires the service organization to comply with the standards throughout an entire year. Naturally, Type II certification is more difficult to obtain and is more valuable proof of commitment to excellence. It was granted to NetHosting in August by The Cadence Group and is available upon request.

SOC 1 certification is entirely for our customers’ benefit, said Mr. Livingston. Whether they need the certification or not, everyone benefits from the safety and security in these standards. It adds tremendous value to our hosting services.

NetHosting was awarded PCI compliance in April of 2009 as well, and established itself as the first PCI compliant data center in Utah. It is one of the first in the world to be added to the credit card industrys list of approved service providers.

About NetHosting

NetHosting has delivered custom hosting solutions for nearly fifteen years. Serving enterprises of every size, its products include a broad range of cloud hosting and storage options as well as dedicated, managed, and virtual hosting services. Housed within a state-of-the-art PCI and SOC 1 certified data center, each service is packaged with a 100% uptime guarantee and the personal support of a Dedicated Expert.

Curious to know what sets NetHostings Dedicated Experts apart from other support teams? Find out at http://www.NetHosting.com or follow us @nethosting on Twitter.

Adhost Internet Completes SSAE 16 Type II Audit of Seattle Data Centers

Seattle, Washington (PRWEB) September 08, 2011

Adhost Internet, a colocation and Web services provider located in downtown Seattle, announced today that it has completed a Statement on Standards for Attestation Engagements No.16 (SSAE 16) Type II audit. SSAE 16, developed by the American Institute of Certified Public Accountants (AICPA), is the most widely recognized authoritative guidance that provides service organizations a uniform method for disclosing independently assessed information about the design and operation of internal controls related to their services.

The audit was performed by Accell TAC, P.A., a full-service audit and consulting firm that specializes in conducting SSAE 16 audits. Earlier this year the SSAE 16 replaced SAS 70 (Statements on Auditing Standards No. 70), which Adhost completed in previous years. Compared to SAS 70, SSAE 16 brings US companies up to date with the new international service organization reporting standards, the ISAE 3402. SSAE 16 audits require a written assertion from management regarding the data center controls and the service auditors opinion letter.

Companies who complete an annual SSAE 16 audit of their data center operations are able to demonstrate a substantially higher level of assurance and operationally visibility than those companies who do not. The completion of the SSAE 16 Type II audit typifies Adhosts continued commitment to create and maintain the most stringent controls needed to ensure the highest quality and security of services provided to their customers. The Service Auditors Report issued by Accell TAC, P.A., with an unqualified opinion, demonstrates that Adhosts control activities were effectively designed and in operation throughout the reporting period.

“By successfully passing a SSAE 16 Type II audit, as well as SAS 70 Type II audits in previous years, we continue to demonstrate our commitment to proper controls and security in our data centers. All of our data center clients, including publicly traded companies and those in the financial and healthcare industries, benefit from our processes and procedures and are able to use our audit report for their required audits, states Will Riffle, Adhost President and CEO.

The Service Auditors Report includes a detailed description of Adhosts controls and an independent assessment of whether the controls are placed in operation, suitably designed, and operating effectively. To receive a copy of the Service Auditors Report, or for any further questions, please contact Adhost Sales at sales(at)adhost(dot)com.


Adhost Internet is a West Coast data center provider delivering complete server colocation, virtual cloud servers, and managed server solutions since 1995. Servers are located in three secure, carrier neutral Seattle data centers with in-house 24×7 technical support and 24×7 client access. Whether its a small or medium-sized business or a big name like Microsoft, Zumiez, WatchGuard or the Seattle Space Needle, Adhost delivers Web solutions that work. Find out more at http://www.adhost.com.