Copeland Buhl & Company, a 51 plus year-old Twin Cities based CPA firm with a strong practice offering in IT, security, compliance as well as ERP accounting software platforms. Traditional tax and accounting services along with specialty services in Accounting & ERP support, and information security compliance (SOC 2 / HITRUST).
A Service Organization Controls (SOC) engagement from Copeland Buhl provides your customers and prospects assurance that controls over IT security, data availability, processing integrity, confidentiality, financial reporting and privacy are properly in place. Using a rigorous approach, we get to know your organization’s processes and operations, collecting and evaluating all the necessary documentation. Our CPAs and IT experts work together to deliver a SOC report that meets the standards set by the AICPA.
When you choose to use HITRUST CSF as your security framework, you don’t have to go through the certification process alone. Copeland Buhl guides you through every step of the way. We ensure that you meet all of the requirements to prove that you are one of the many HITRUST Certified organizations. HITRUST certification leverages nationally as well as internationally accepted security and privacy-related regulations, standards, and frameworks-including ISO, NIST, PCI, HIPAA, plus GDPR-to ensure a comprehensive set of security and privacy controls and continually incorporates additional authoritative sources. This gives your clients confidence in the safety of their private information. In addition, it provides you with a roadmap to data security and compliance.
Copeland Buhl builds long-term relationships by providing high quality, responsive service to clients. It's not about today’s transaction, rather it’s more about planning and building for future success.
Pricing
- SOC2 Readiness engagements are starting at $10,000.
- SOC2, Type 1 engagements are starting at $10,000.
- SOC2, Type 2 engagements are starting at $25,000.
- HITRUST pricing estimates involve a conversation to be able to determine an approximate number of requirement statements, which is a contributing factor for HITRUST engagements.