Which Cloud Holds My Data?

One of the discussions brought up at this year’s AICPA Service Organization Controls (SOC) School was the issue of cloud computing and the effects it has on industries that are subjected to a SOC 1 or SOC 2 audit.  When it comes to cloud computing, subservice organizations may be involved in providing the operations that […]

Read More

Integrated Audit of Financial Statements – Relevance of an SSAE 16 Report

  Over the many years, while I have been working with companies as their Independent Service Auditor to help issue their SAS 70s / SSAE 16 reports, I have also been on the other side of the fence wherein I was part of the team responsible for the Audit of the Financial Statements of a […]

Read More

Too many SSAE 16 audit detours?

Does your Auditor offer: fixed fees? NO out-of-pocket expenses? a declining fee structure? over 250 SOC Audits of experience? the draft report within 10 days of completion? responds to your calls and emails on the same day?   If your current CPA firm is not meeting these standards, then you might want to give us a […]

Read More

Why do my clients ask me for a SOC 1/SSAE 16 Report?

Let’s spend a few minutes getting back to basics. Why do your clients ask for a SOC 1/SSAE 16 report to be provided?  Your clients ask because their auditors probably asked for it.  So why do your auditors ask for this report?  The roots for SSAE 16 can be traced back to SAS 70 and […]

Read More

The Applicability and Benefits of a SOC 3 Report

Several of our clients, current as well as prospective have posed a question to us about the applicability of a SOC 3 report and its benefits.  I thought some additional information drawing clarity to the question will be beneficial to others who read this Blog especially for those that have the same question. So what […]

Read More

ISAE 3402 – A Global Standard for a Global Marketplace

As companies emerge in an ever growing global economy newly adopted accounting principles and standards allow potential clients insight into the prospective organization.  The new globally accepted framework, International Standards for Assurance Engagements (ISAE) No. 3402, Assurance Reports on Controls at a Service Organization creates transparency and more clarity when reporting on controls at service […]

Read More

Simplifying Your Audits

In today’s world of industry and governmental regulations I know it seems like there is a revolving door of auditors, assessors and examiners visiting your location. Although we know you love seeing us and can’t wait till the next team of auditors show up so you can clear your calendar of real work to facilitate […]

Read More

SOC 1 / SSAE 16 Case Study for Payroll Administration Services

Case Study – SSAE 16 (SOC 1) for Payroll Administration Services Industry Organizations that directly provide payroll administration services to your clients or are a vendor associated with companies that provide payroll administration services such as electronic funds transfer, payroll debit cards, payroll software, tax filing, or time and attendance and as such have a direct […]

Read More

Value of the SOC 2 for Service Organizations

If your service organization processes customer transactions that impact financial reporting, such as payroll or other financial reporting function, you are more than likely familiar with the SSAE 16 SOC 1 report and its predecessor the SAS 70. Your customer’s auditors request the SAS 70, now the SSAE 16, every year to fulfill your customer’s […]

Read More

SOC 2 – Not your prior year SAS 70

After a 20 year reign as the service auditor’s report, the SAS 70 was retired this summer with much fanfare. After being used to communicate the design, implementation and operating effectiveness of controls at every type of service organization imaginable, the AICPA published new standards that better align the type of service organization and service […]

Read More