SOC for Cybersecurity Certificate: FAQs

Requirements

You do not have to be a CPA to obtain the certificate. This certificate is for public accounting practitioners interested in providing cybersecurity attestation services (SOC for Cybersecurity) and in building competencies in and understanding of this service or those who already have SOC for Service Organizations practices and are looking to expand into cybersecurity attestation services. Participants must have either IT expertise or access to IT professionals who possess the skills to perform this work. Those who earn the certificate will receive the recommended CPE credits.

You should have familiarity with the cybersecurity description criteria and the trust services criteria.

There is no formal application process for this certificate program. Interested individuals can purchase the program online.

There are no specific annual requirements for maintaining your certificate. However, we anticipate that some individual courses may be updated every 1-3 years to reflect changes in the industry. For your certificate to remain current, you will need to successfully complete those updated courses. However, updates are likely to be at a fraction of the cost of the original certificate. Plus, you have access to the program for 24 months from purchase, if the courses are updated during the access period, you will have access to the updated courses at no additional cost.

Actual completion of the program is required to earn the certificate. CPE credit is being awarded for the program, and the CPE standards do not allow for “testing out of” as a way to earn credit.

Course Content

SOC for Cybersecurity meets a growing business need for attestation. It's a solution that builds upon the accounting profession's experience in auditing system and organization controls. This certificate helps you understand how to perform SOC for Cybersecurity attestation examinations using the AICPA's cybersecurity risk management reporting framework.

You have the flexibility to select the format that fits your learning style. Learn at your own pace with online self-study, join a live, interactive in-person workshop, or view via webcast. Upon completion of any format, you will be awarded with a digital badge.

Pricing

Pricing varies based on the format you choose. See the product page for details.

Time/Duration

Duration depends on the individual and/or the desired format. For the online self-study format, there is a commitment of about 14.5 hours; the in-person workshop is a two-day live event consisting of 16.5 hours. The webcast format is delivered in a 2-part series that takes approximately 13.5 hours.

For the online self-study format, you have twenty-four (24) months from the date of purchase to complete the course. You are encouraged to complete the program within a twelve (12) month period or less.

The certificate is not a professional credential or license, therefore they do not expire. However, we anticipate that some individual courses may be updated every 1-3 years to reflect changes in the industry. For your certificate to remain current, you will need to successfully complete those updated courses. However, updates are likely to be at a fraction of the cost of the original certificate. Plus, you have access to the program for 24 months from purchase, if the courses are updated during that period, you will have access to the updated courses at no additional cost. Completion of these updated courses will earn a new Certificate, with the current year’s date.

Other

You will receive your certificate as a digital badge. For more information on the digital badge, please see the Digital Badge FAQs.

The AICPA has the absolute and unrestricted right to revoke or suspend any rights you have to use the digital badge images, or any representation thereof, if you are (a) convicted of any crime punishable by more than one year in prison or for any crime related to dishonesty, or (b) disciplined by any governmental or non-governmental authority that regulates, or enforces a code of conduct related to, your professional activities, including but not limited to, a state board of accountancy, AICPA, IRS, SEC, or PCAOB, or (c) a peer reviewer restricted from performing peer reviews by the Peer Review Program.