Gray CPA, PLLC, is a full-service, innovative national certified public accounting firm specializing in affordable Service Organization Control (SOC) 1/SSAE 16, SOC 2, and SOC 3 audits, information technology audits, and regulatory compliance services, serving clients throughout the United States.

At GCPA, we recognize the growing regulatory requirements impacting companies of every size and industry, and the pressure of the associated compliance costs on their bottom line. We partner with our clients to establish and implement a streamlined, cost-effective and focused solution to reduce costs and achieve the elusive balance between risk, business performance, and compliance. Learn more about GCPA.

Latest News


May 10, 2016   Cybersecurity assessments continue to be a hot topic within the financial institution community. Examiners are starting to focus on cybersecurity policy and procedures. A cybersecurity strategy is a must have in today's information security environment.

March 1, 2016  New AICPA guidance from mid-2015 details the common criteria now used for SOC 2 reporting. This significantly reduces the redundancy of controls in previous reports and reduces the size of the report. Further guidance has been issued to allow the SOC 2 report to address multiple controls framework such as HIPAA and FISMA.



Helpful Links

The American Institute of Certified Public Accountants, AICPA

The Institute of Internal Audit, IIA

Click here for more helpful links

Gray CPA, PLLC All Rights Reserved