2026 SOC Reports Review

Vendors’ independent audit (SSAE) and SOC reports are an integral part of financial institutions’ due diligence programs. There are distinct differences between the types of audits (SOC1, SOC2, and SOC3), the periods that they cover (Type 1 or Type 2), and the data security measures they describe.

Join Natalya Fatkhiyeva, CPA, CITP, CISA, IT Assurance Senior Manager, Crowe, LLP, for an overview of the SOC 1 controls relevant to financial reporting and the SOC 2 controls for cybersecurity risk, business recovery, incident response, and vendor management. This year, we’ll focus some time on the Complementary User Entity Controls, the security and operational practices that our members and clients must follow to ensure shared responsibility for data and system security.

Please note: Vertifi’s SOC reports for calendar year 2025, and those of its parent company, EasCorp, will be available online to authorized users (with certificate access and due diligence authority) following the webinar on the due diligence pages of our websites, linked here: Vertifi Due Diligence page or EasCorp Due Diligence page.

Registration Information

This webinar is for Vertifi direct clients and EasCorp members. Register via GoToWebinar. Registrants will receive their event confirmation directly from GoToWebinar.

EasCorp member credit unions in need of further assistance are encouraged to contact us using our online form.