SAS70 Control Objectives | Here’s What You Need to Know
As a SAS70 auditor, organizations often ask me how are control objectives developed. Technically, it is the service organization’s responsibility to develop SAS70 control objectives. However, in...
View ArticleSAS 70 Type II Audit Reports | Why SAS 70 is Here to Stay
We live in a world of heightened regulatory compliance and corporate governance. From the passage of the 2002 Sarbanes-Oxley Act to numerous other pieces of legislation (HIPAA, GLBA, just to name a...
View ArticleSAS 70 Audit Reports | Start with a SAS 70 Readiness Assessment
Successful completion of SAS 70 Type I or SAS 70 Type II audit reports should start with undertaking a SAS 70 Readiness Assessment. A readiness assessment is an important part of the audit process in...
View ArticleSAS 70 Type II Audits | An Auditor’s Expert Opinion on Pricing
People often ask me what the price of a SAS 70 Type I or SAS 70 Type II audit is. My response? That depends, I say, on many, many factors. Here is what needs to be understood when considering pricing...
View ArticleSAS 70 Audit Reports | Obtain a Sample SAS 70 Type II Audit
If you are seeking to learn more about SAS 70 Type I and SAS 70 Type II audits, then one of the most effective ways for truly gaining an understanding of the auditing standard is to see what the...
View ArticleSAS 70 | PCI DSS | 2009 Regulatory Compliance Checklist
When ushering in the new year festivities, keep in mind that a number of regulatory compliance issues will be facing your organization also as 2009 looms just around the corner. No, they’re not...
View Article
