EnergyCAP’s Energy Information Management System Earns SOC 2 Certification

EnergyCAP, LLC (ENC) is pleased to announce that our EnergyCAP® energy management information solution (EMIS) has successfully completed its SOC 2 Type II compliance audit.

The SOC 2 certification confirms that our robust software platform and data management services comply with the standards outlined by the American Institute of CPAs (AICPA), and ensures EnergyCAP users that ENC has the controls, systems, and processes in place to ensure the confidentiality, integrity, and availability of their data.

The certification criteria—Trust Services Principles—established by AICPA evaluate data management across five categories:

• Security—Intrusion detection, Two-factor authentication, Network & application firewalls
• Privacy—Encryption, Access control, Two-factor authentication
• Processing Integrity—Quality assurance, Process monitoring
• Availability—Disaster recovery, Performance monitoring, Security incident handling
• Confidentiality—Access controls, Encryption, Network & application firewalls

Each organization designs its own controls to comply with the AICPA standards. The controls are documented and then certified by an independent, authorized Certified Public Accountant. Certification verifies the sustainability of the design and operational effectiveness of ENC’s controls.

The SOC 2 certification bolsters ENC’s dedication to the security of customer data. In January of this year, ENC secured its Authorization to Operate (ATO) under the U.S. Government’s FedRAMP program and is now an authorized participant in the FedRAMP Marketplace. FedRAMP provides a uniform approach to risk-based security management and improves the trustworthiness, reliability, consistency, and quality of the federal security authorization process.

EnergyCAP is now the obvious choice for government agencies and other organizations in need of cloud-based utility bill tracking, management of submeter-based chargebacks for tenants and reimbursable activities, energy and sustainability reporting, goal tracking, and measurement and verification of savings (M&V).