login contact: 866-956-9594

Latisys Successfully Completes SOC 2 Type II and SOC 3 Security and Availability Audits

Third-party validation of Latisys policies, procedures & standards affirms commitment to security and compliance.

Englewood, CO (March 14, 2012) – Latisys, a leading national provider of enterprise IT Outsourcing solutions from colocation to cloud, today announced the firm has successfully completed its annual Service Organization Control (SOC) audits for all Latisys’ data centers throughout the United States. Latisys’ 2011 SOC 2 Type II and SOC 3 audits were performed by Ehrhardt Keefe Steiner & Hottman, P.C. (EKS&H), a nationally recognized professional services company and the largest CPA firm headquartered in the Rocky Mountain Region.

The American Institute of Certified Public Accountants (“AICPA”) recently created the Service Organization Control framework. Three new SOC reports are now available:

  • SOC 1 on financial controls—very similar to the original SAS 70 report, and is now under SSAE 16

  • SOC 2 on internal controls related to security, availability, confidentiality, processing integrity and privacy

  • SOC 3 auditor summary of the effectiveness of internal controls

Together, these three SOC reports represent the next generation of AICPA standards for reporting on controls over security and availability at service organizations in the United States. SOC 2 Type II not only updates SAS 70’s broad standards by examining the suitability of the design of a provider’s internal controls, it goes a step further by documenting the operating effectiveness of those controls. SOC 3 is a summary Trust Services Report that documents SOC 2 assurances without the detailed description of tests and results contained in the SOC 2 report.


Because SOC 2 and SOC 3 independently verify the validity and functionality of Latisys’ control activities and processes, Latisys customers can be assured that the highest level of internal controls and security are established and maintained. This not only ensures that Latisys data centers in Englewood, CO; Oak Brook, IL; Irvine, CA; and Ashburn, VA have been through an in-depth audit to ensure adequate controls and safeguards are in place, but adds a further assessment layer by requiring an organization’s management to attest in writing to the fair presentation and design of controls.


“We are pleased to be one of a small handful of IT Outsourcing providers to achieve the far more stringent reporting requirements of SOC 2 and SOC 3 – which sends an important message to customers seeking enterprise-grade Cloud and Managed Hosting solutions,” said Evans Mullan, Chief Operating Officer, Latisys. “We continue to invest in the resources, technology and people required to uphold the highest level of internal controls to safeguard our customers’ sensitive data and mission critical IT infrastructure.”


While SAS 70 utilized audit criteria that were defined by the data center provider, SOC 2 and SOC 3 reports put stricter audit requirements in place and set a higher bar with more meaningful audit standards that truly distinguish Latisys from lesser IT infrastructure solution providers.


With multiple high-density, Tier III data centers in Denver, Orange County, Chicago and Northern Virginia, Latisys offers a complete array of IT Outsourcing Services from colo to cloud, covering all U.S. time zones – including gateways into Asia Pacific and Europe – and providing unmatched scalability, security and multi-site redundancy to enterprise businesses.

About Latisys

Latisys is a leading national provider of colocation, managed hosting, managed services, disaster recovery and private cloud solutions to medium-sized businesses, enterprise customers and government agencies. With a heritage of serving business customers since 1994, and multiple high-density data centers across the United States, Latisys offers scalable outsourced IT infrastructure management solutions that provide customers what they need, when they need it. As a client-centric company—with state of the art data centers in Ashburn, Virginia, Chicago, Denver and Irvine, California—Latisys is quickly becoming the IaaS solution provider of choice for companies that demand more from their IT infrastructure partner. All while optimizing clients' return on investment. All while 'delivering more_'. Call 1-866-956-9594 or visit www.latisys.com for additional information.