How Subservice Organizations Impact SSAE 16 Reports

By: Scott Price, Managing Partner of A-LIGN Determine whether your SSAE 16 Report is saving your client money or costing them! With year-end financial audits fast approaching, your clients will soon be requesting your SSAE 16 report. Why? This is because your SSAE 16 reports will allow your client’s financial auditors to determine if they need […]

Read More

Updates to the COSO Internal Control – Integrated Framework: Breakdown of What it Means for Management

By: Scott Price, Managing Partner of A-LIGN On May 14, 2013, COSO’s board issued an updated version of its “Internal Control – Integrated Framework,” originally published in 1992. The updated Framework incorporates input from various organizations, including the American Institute of Certified Public Accountants, the Institute of Internal Auditors, public accounting firms, and regulators. The revised […]

Read More

Why Payroll Companies are Subject to a SSAE 16 Examination

By: Scott Price, Managing Partner of A-LIGN Classification First, lets get down to the basics.  Payroll companies are classified as “classic” service organizations.  This is due to the fact that payroll companies typically use the same processes, procedures, controls, and systems to process payroll for a variety of companies.

Read More

Ask A-LIGN: When receiving our first SSAE 16 audit, if the auditors find minor mistakes, will we have the opportunity to correct them?

By: Scott Price, Managing Partner of A-LIGN Answer: I hear this question often and, my answer is, “it depends.” I realize this is not the response most of you were hoping for, but I will elaborate. If your audit is a Type 1 SSAE 16, you can elect to have the review date of the report […]

Read More

Ask A-LIGN: What is the difference between a SOC logo and a SOC seal?

By: Scott Price, Managing Partner of A-LIGN  Answer: Misuse of Service Organization Control (SOC) terminology is a common mishap in the marketplace. When it comes to the use of the SOC logo or seal, many tend to assume the terms mean the same thing (six of one, half a dozen of the other), but in reality […]

Read More

Ask A-LIGN: Is SSAE 16 a Certification?

Answer: No, SSAE 16 is not a certification. Here’s why: It is incorrect to say that you are SSAE 16 certified, because there is not a certification awarded to you after the engagement. The appropriate wording would be to state, “we have received an unqualified (Type 1 or Type 2) SSAE 16 report as a […]

Read More

Ask A-LIGN: Why is the SAS 70 audit still asked for? I thought it no longer existed?

Answer: Correct. The SAS 70 audit has been out of existence since June 15, 2011. Many organizations are still being asked for SAS 70, frankly, due to the fact of its nearly 20-year existence and lack of education surrounding the change of the standard. Here’s Why: Since SAS 70 has been around nearly 20 years, […]

Read More

Bundling your Compliance Needs

At A-LIGN we continue to develop our service offerings to better meet our clients needs.  If you are required to comply with multiple compliance standards we are able to offer bundled engagements that take advantage of the overlap between the various regulatory and compliance standards.  We provide our clients with the ability to deal with […]

Read More

Which Cloud Holds My Data?

One of the discussions brought up at this year’s AICPA Service Organization Controls (SOC) School was the issue of cloud computing and the effects it has on industries that are subjected to a SOC 1 or SOC 2 audit.  When it comes to cloud computing, subservice organizations may be involved in providing the operations that […]

Read More

Integrated Audit of Financial Statements – Relevance of an SSAE 16 Report

  Over the many years, while I have been working with companies as their Independent Service Auditor to help issue their SAS 70s / SSAE 16 reports, I have also been on the other side of the fence wherein I was part of the team responsible for the Audit of the Financial Statements of a […]

Read More