Visions Completes SOC 2 Type 2 Plus HITRUST CSF Examination

Share Article

The Native American owned, industry leading, direct marketing and print manufacturing company was examined by Assure Professional, proving the privacy, security and compliance of their print and fulfillment system.

It is admirable to see that Visions has taken this matter to heart, and has invested in improving their internal control environment, to address these matters that impact their own operations and delivery of services to its clients. — Juan Vargas, Assure Professional, Senior IT Security Auditor

Visions, one of the largest, Native American owned, direct marketing and print manufacturing providers in the United States, has successfully completed a Service Organization Controls (SOC) 2 Type 2 plus Health Information Trust Alliance Common Security Framework (HITRUST CSF) core requirements examination (SOC2+HITRUST.) The audit was performed by Assure Professional - a leading cybersecurity, assurance and compliance solutions provider. Visions’ print and fulfillment system is SOC 2+HITRUST compliant, by the standards established by the American Institute of Certified Public Accountants (AICPA.)

“Governance, risk, and compliance are necessary in every business, but many lack the commitment to establish the required internal framework to meet these challenges. It is admirable to see that Visions has taken this matter to heart, and has invested in improving their internal control environment, to address these matters that impact their own operations and delivery of services to its clients,” said Juan Vargas, Assure Professional, Senior IT Security Auditor.

The SOC 2+HITRUST report is a collaboration between HITRUST and the AICPA, that utilizes the HITRUST CSF controls as the base framework, combined with the SOC 2 criteria for each of the Trust Services Principles (TSP) of security, availability, processing integrity, and confidentiality, to test the efficiency of an organization’s security and privacy practices. Compliance is determined by tests and reports conducted by a qualified, independent auditor, on the structure and operational soundness of a service organization’s controls, over a period of six months to a year. The audit accounts for the system of the data center, and the suitability of its design of controls, as reported by the company. The audit also includes verification of an auditor’s opinion on the operating effectiveness of the controls.

Visions’ successful completion of the audit process confirms their current information security policy is aligned with the requirements of Statement on Standards for Attestation Engagements 16 (SSAE 16) SOC 2 Type 2 protocol, as well as International Organization for Standardization (ISO) 9001:2008 quality management system and Current Good Manufacturing Practices (cGMP.)
"Data is the most valuable customer asset we handle at Visions, and we're proud to provide this high level of security," said Jon Otto, Visions’ President/CEO. "When it comes to the customer experience, we’re committed to continuously improving our processes while maintaining the highest standards for protecting sensitive customer data.”

Recognized as one of the largest Native American owned direct marketing and print manufacturing providers in the United States, Visions provides integrated marketing services and specializes in full-service commercial printing, graphic design and interactive web solutions, combining traditional media with new media to offer a powerful menu of direct-marketing solutions that optimize results and ROI.

About Assure Professional
Assure Professional, a leading cybersecurity, assurance and compliance solutions provider, specializes in providing due diligence, private equity, and accounting services as well as compliance related engagement programs including, SOC 1 (formerly SSAE 16) Audits, SOC 2 + HITRUST Audits, SOC Readiness Assessments, SOC for Cybersecurity, SOC for Vendor Supply Chain, ISO 27001 Assessments and HIPAA/HITECH Assessments. The firm’s leadership team has nearly 70 years of combined business management, operations and related information technology (IT) experience. Headquartered in De Pere, Wisconsin, Assure Professional has implemented business and technology best practices for companies across a variety of industries in US states, as well as Canada, South America, and several European countries. Visit http://www.assureprofessional.com. Assure Professional Social: Facebook, Twitter @assurepro, LinkedIn.

About Visions
With more than 30 years evolving within the industry, Visions is one of the largest Native American owned direct marketing and print manufacturing providers in the United States. Headquartered in Brooklyn Park, Minnesota, Visions provides integrated marketing services and specializes in full-service commercial printing, graphic design and interactive web solutions, combining traditional media with new media to offer a powerful menu of direct-marketing solutions that optimize results and ROI. Through its ISO 9001:2008 quality management system, supported by LEAN manufacturing principles, Visions is able to focus on providing the highest levels of quality assurance and risk management to its customers nationwide. Visit http://www.visionsfirst.com. Visions Social: Facebook, Twitter @visionsfirst, LinkedIn.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Ruth Fameree
Visit website

Media