Browse SOC 2 Auditors

A-LIGN is a technology-enabled cybersecurity compliance firm and the number one global issuer of SOC 2 reports, having completed over 16,000 audits since its founding in 2009.

Aprio, founded in 1952, is a Top 25 U.S. public accounting firm with 1,900+ team members serving clients in 50+ countries. Aprio is one of the few firms offering ISO, SOC reporting, HITRUST, PCI DSS, CMMC, FedRAMP, and WebTrust from a single provider.

Audit Peak is a minority-owned CPA firm specializing in IT audits, cybersecurity, and risk advisory services. Founded by former PwC, EY, and KPMG professionals, the firm delivers Big 4-level audit expertise with boutique agility. AICPA Peer Review rated 'Pass' (highest rating).

BARR Advisory is a cloud-based cybersecurity and compliance firm specializing in SOC 2, ISO 27001, and FedRAMP for fast-growing SaaS and cloud-based organizations, with a net promoter score of 89.

Dansa D'Arata Soucia LLP (DDS) is a full-service CPA firm in Buffalo, New York with 40+ CPAs specializing in SOC 2 audits. Peer reviewed through the AICPA Peer Review Program, DDS has a decade of experience with the AICPA Trust Service Criteria.

IS Partners (merged with AssurancePoint) is a globally recognized CPA firm specializing in IT compliance and cybersecurity assurance, SOC 2, ISO 27001, HITRUST, and PCI DSS services.

ITGRC Advisory Ltd is a UK-based firm delivering ISAE 3402 and SOC 2 audit services to technology and financial services organisations. Operating from London, they specialise in helping UK and European companies meet AICPA Trust Services Criteria and ISAE 3000/3402 standards.

Johanson Group is a Colorado-based CPA firm specializing in SOC 1, SOC 2, SOC 3, ISO 27001, and HIPAA audits with a three-step process and reports delivered within four to six weeks.

Linford & Company is a Denver-based CPA firm comprised of former Big Four auditors specializing in SOC 2, HIPAA, FedRAMP, and HITRUST assessments. 90% of their work consists of SOC 2 audits.

Prescient Assurance (formerly Prescient Security) is a globally recognized leader in multi-framework compliance auditing, security assessments, and penetration testing, with senior auditors across the U.S., EMEA, and APAC supporting 25+ compliance frameworks for 5,000+ clients.

Richey May provides attest services through Richey, May & Co., LLP, an AICPA-member CPA firm that undergoes triennial Peer Review and has received the highest attainable results. They specialize in SOC 1 and SOC 2 reports for alternative investment, mortgage banking, and technology firms, with Drata partnership for streamlined evidence collection.

Schellman's German office in Munich provides SOC 2, ISO 27001, and C5 attestation services for European organisations. Schellman is one of the few global compliance firms with a dedicated European presence enabling ISAE 3000/3402 and SOC examinations under both AICPA and international standards.