-
Service Providers – How to manage a SSAE 16/SOC 1/SOC 2/SOC 3 Review
m
-
User Organizations – How to read a SSAE 16/SOC 1/SOC 2/SOC 3 Report
m
-
CPA Firms – How to perform an SSAE 16/SOC 1/SOC 2/SOC 3 Engagement
m
While some companies still request a SAS 70 report (why, who knows…), many contracts now require a SSAE 16 report, and with the change to SSAE 18 many are now
If you have never been audited before, as is the case with many service organizations, you are probably wondering what kind of documentation will I need to give the auditors?
Some organizations have heard of SAS 70, SSAE 16, and soon to be SSAE 18, but, don’t really know WHY they need to pay to have a bunch of auditors
I’ve been hearing from various people in the marketplace that they were interested in learning about some steps, at a high level, that they need to take to get off
Criteria, as defined by the SSAE 18 (formerly SSAE 16) guidance are: The standards or benchmarks used to measure and present the subject matter and against which the service auditor
SANS put together a great overview of SOC 2 terminology, report structure breakdown, and process in their signature cheat sheet format. This is a great document to keep handy if