OUR THOUGHTS ON:

SORT OPTIONS: Most Recent | Most Viewed

Strategies for Service Organizations to Prepare for the New SOC 2 Reporting Requirements

Service Organizations that undergo a SOC 2 examination or are currently preparing to have one performed, should be aware of the recently updated requirements ... read more >

Postcard from the 2018 AICPA SOC for Cybersecurity Conference

I recently attended the AICPA’s SOC for Cybersecurity conference at the AICPA’s headquarters in Durham, North Carolina. The conference covered ... read more >

SOC for Cybersecurity Reports: Overview and Comparison to SOC 2 Reports

The AICPA recently updated the System and Organization Controls (SOC) reporting suite of services with the releases of Statement on Standards for Attestation ... read more >

SOC 2 Trust Services Criteria Revamped to Align with the COSO 2013 Framework

The AICPA’s Assurance Services Executive Committee (ASEC) recently released an exposure draft, proposing revisions of the Trust Services Criteria ... read more >

SOC 2 Reports Meet Certification Program Requirements for Access to the Death Master File

On June 1, 2016, the National Technical Information Service (NTIS) issued the final rule for how entities receiving the Limited Access Death Master File ... read more >

ASEC Issues Exposure Draft to Revise TSP Section 100, Trust Services Principles and Criteria for SOC 2 Reports

SSAE 18/SOC

By Troy Fine

On June 15, the Assurance Services Executive Committee (ASEC) of the American Institute of CPAs (AICPA) issued an exposure draft proposing revisions to ... read more >

Preparing for the New SOC 2 Trust Services Principles and Criteria

As the December 15th deadline quickly approaches, many organizations might be thinking how they should be preparing for the new SOC 2 Trust Services Principles ... read more >

Help Prevent Future "Heartbleeds"

Recently, a Finnish security firm, Codenomicon, discovered the Heartbleed vulnerability in a variant of SSL (Secure Socket Layer) protocol known as OpenSSL. ... read more >

Skagit County, Washington Settles With The Department of Health And Human Services For Potential HIPAA Violations

On March 7, 2014, Skagit County, Washington agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) ... read more >