TekLinks Managed and Cloud Services adhere to industry-leading best practices and compliance-driven operational standards. From the internal controls we have put in place for our managed services to the manner in which we operate and maintain our data centers, TekLinks prides itself on the combination of assurances and certifications the company has received from independent governance and compliance organizations.
ISO 20000 Certified
ISO 20000 is the standard for Information Technology- Service Management based on the Information Technology Infrastructure Library (ITIL®) framework. It specifies the requirements for a service provider to effectively plan, implement, operate, secure, monitor, review, maintain and improve its Service Management System. The requirements include the design, transition, delivery and improvement of services to fulfill agreed service requirements.
TekLinks ISO20000 certification was particularly instrumental in qualifying our company to receive both the Cisco Master Unified Communication Specialization and the Cisco Master Cloud and Managed Services Specialization.
TekLinks is part of an elite group of well-established organizations certified to the ISO 20000 internationally-endorsed standard, with demonstrated experience implementing ITIL best practices. TekLinks’ certification reflects our commitment to providing the best quality of services to our clients.
Internal Controls, Security, and Risk Mitigation Assurance
Controls are in place at TekLinks to ensure that our information assets and those entrusted to us by our customer user organizations are protected as agreed and effectively mitigate risks. A list of the General IT Controls applicable to all Managed and Cloud Services are available to our customers upon request. In order for these controls to be most effective in assisting you (the customer) to mitigate your risks, complementary controls must also be in place at our customer organizations. A list of these User Organization Control Considerations is available here.
What is SSAE16 SOC 1/SOC2 Type II Auditing?
The American Institute of Certified Public Accountants (AICPA) has replaced the SAS70 with the SSAE16 audit. Each year, an independent service auditor examines the processes and activities of our Managed Services Operations to ensure the effectiveness of the documented controls we have in place. The audit consists of onsite examination and testing at each of the company’s data center facilities.
The SOC1 Report (Report on Controls at a Service Organization Relevant to User Entities’ Internal Control over Financial Reporting) is designed to help service organizations that operate information systems and provide their services to other entities, as well as build trust and confidence in their service delivery processes and controls. The report is specifically intended to meet the needs of our user entities that utilize our services and their auditors in evaluating the effect of the internal controls we have in place on the user entities’ financial statements. These reports are intended for user auditors who plan and perform audits of the user entities’ financial statements. For additional information, please refer to the AICPA website.
Our Service Organization Controls (SOC) Reports
TekLinks annually conducts an independent third party SSAE16 SOC1 Type II and AT 101 SOC2 Type II audit engagement. Both audits provide assurance that our controls are operating effectively to meet the objectives.
- The SOC1 includes onsite testing of our IT General Controls at all Data Center locations. A copy of this Auditor Statement is available here.
- The SOC2 includes onsite testing of the standard Trust Principles (TSP 100) for Security, Privacy, Confidentiality and Availability of information that is stored in our Managed & Cloud Systems. A copy of this Auditor Statement is available here.