Strengthening Financial Controls: Announcing Our Expanded Summer 2025 SOC 1 Report
In today’s complex business environment, trust and transparency are non-negotiable. For organizations that rely on third-party service providers, ensuring the integrity of internal controls over financial reporting (ICFR) is a critical component of risk management and regulatory compliance. This is where a System and Organization Controls (SOC) 1 report becomes an indispensable tool for assurance and peace of mind.
We are pleased to announce a significant expansion in our compliance and auditing efforts. Our upcoming SOC 1 report, set for release in Summer 2025, has been expanded to cover an impressive 183 services. This comprehensive audit demonstrates our unwavering commitment to maintaining the highest standards of security and operational integrity for the services you depend on.
Understanding the Importance of a SOC 1 Report
A SOC 1 report, developed by the American Institute of Certified Public Accountants (AICPA), is specifically designed to address the internal controls at a service organization that are relevant to a client’s own financial reporting. When a company outsources key business functions—such as data processing, cloud storage, or payment applications—it must ensure that the vendor’s controls are sound, as they can directly impact the company’s financial statements.
Instead of every client conducting their own time-consuming and expensive audit, they can rely on this single, independent report. It provides a detailed examination of control objectives and activities, offering assurance to both user entities and their financial auditors.
What Our Expanded 2025 Report Means for You
The expansion to cover 183 distinct services is a major milestone. This broader scope provides a unified and holistic view of our control environment, delivering key benefits to your organization.
Simplified Regulatory Compliance and Audits: For publicly traded companies subject to regulations like the Sarbanes-Oxley Act (SOX), our SOC 1 report is crucial. It provides the necessary evidence to your auditors that the controls over outsourced services are designed and operating effectively, streamlining your own audit processes and reducing compliance burdens.
Enhanced Trust and Transparency: A comprehensive SOC 1 report is a clear indicator of a mature and reliable partner. By voluntarily undergoing this rigorous, independent audit across such a wide range of services, we are reaffirming our dedication to transparency and providing you with the documentation needed to validate our security posture.
Streamlined Vendor Due Diligence: The process of vetting and managing third-party vendors can be complex. With 183 services covered under a single SOC 1 attestation, your risk management and procurement teams can operate with greater efficiency. This consolidated report saves valuable time and resources that would otherwise be spent assessing individual service controls.
Actionable Steps: How to Leverage the SOC 1 Report
Once the Summer 2025 SOC 1 report becomes available, your organization can use it to fortify its own governance and compliance framework. We recommend the following steps:
Request and Review the Report: Familiarize yourself with the scope of the audit, the control objectives, and the independent auditor’s opinion. Pay close attention to the description of the systems and the suitability of the control design.
Share the Report with Your Auditors: This is the primary purpose of the document. Providing it to your internal and external auditors will give them the assurance they need regarding the controls relevant to your financial reporting.
Assess and Map Controls: Your compliance team should review the report to ensure the described controls align with your company’s specific risk tolerance and regulatory requirements. This helps validate that our control environment adequately supports your own.
Our ongoing investment in comprehensive compliance certifications is a core part of our mission to be the most trusted partner for your business. The upcoming Summer 2025 SOC 1 report, covering an extensive 183 services, is a testament to that promise. We encourage you to prepare for its release and integrate it into your annual audit and risk management planning.
Source: https://aws.amazon.com/blogs/security/summer-2025-soc-1report-is-now-available-with-183-services-in-scope/
