Skokie, Ill. – April 10, 2018 – CIC Plus, an industry leader in employer compliance management, announced today the recent successful completion of its Service and Organization Control (SOC) 2 Type 2 report. Conducted by Armanino, the successful completion of the audit attests that CIC Plus maintains effective Security and Confidentiality controls over its handling of clients’ employee data.
The SOC 2 report, which analyzed the period from January to December 2017, serves to confirm that CIC Plus’s design of controls, relevant to the security and confidentiality of the systems used to process clients’ employee information, meet the rigorous SOC 2 standards. A copy of this report is available upon request. The data centers that provide colocation services to CIC Plus also maintain their own SOC 2 reports.
CIC Plus works with many clients to develop client-portal security policies to meet specific needs including IP whitelists and TFA requirements for client administrators, end user and administrator password policies and beyond.
“At CIC Plus, we make significant investments so that we not only meet but exceed industry security standards,” said Chris Welp, chief information security officer, CIC Plus. “We employ the highest security and confidentiality measures, including two factor authentication and trusted contacts, to ensure the protection of our clients’ employee data. We can’t overstate how critical security measures are to our business; data security is integral to everything we do.”