OUR THOUGHTS ON:

SORT OPTIONS: Most Recent | Most Viewed

Still Getting Multiple Audit Requests Even Though You Have a Service Organization Control Report?

For a service organization, one of the benefits of having a SOC examination performed is that it SHOULD reduce or even eliminate additional audit requests, ... read more >

Service Organization Control (SOC) Reporting - Vendor vs. Subservice Organization

SSAE 16/SOC

By Holly Russo

What differentiates an organization from being considered a vendor versus a subservice organization? This distinction is important for SOC 1 reports because ... read more >

Key Fundamentals of Reviewing and Assessing Service Organization Control (SOC) Reports

SSAE 16/SOC

By Holly Russo

A Service Organization Control (SOC) report is typically required by companies and their auditors that obtain significant services from another organization. ... read more >

Preparing for the New SAS 70: SOC 1, 2 and 3

SSAE 16/SOC

By Holly Russo

Beginning June 15, 2011, three new Service Organization Controls (SOC) report options will replace SAS 70 reports. With the effective date just around ... read more >

SAS 70 Reports Now Service Organization Control (SOC) Reports

SSAE 16/SOC

By Holly Russo

Service Organization Control (SOC) Reports (formerly known as SAS 70 reports) are internal control reports on the services provided by a service organization. ... read more >

Mastering SAS 70 Audit Reports for Service Organizations

SSAE 16/SOC

By Holly Russo

Steve Thompson, Audit Shareholder, and Holly Russo, Internal Audit Senior Manager, were speakers in a Strafford webinar entitled "Mastering SAS 70 ... read more >

What's the Difference? SSAE 16 vs. SAS 70

SSAE 16/SOC

By Holly Russo

In April 2010, the AICPA issued Statement on Standards for Attestation Engagements (SSAE) 16, titled Reporting on Controls at a Service Organization, which ... read more >