Illusion of Insignificance: Cybersecurity and the Small Business

Author: Stuart Rorer, Senior Consultant at A-LIGN. “Big Box Store ABC Has Been Hacked, Customer Card Information Exposed!” “E-Commerce Giant Acme Inc., Suffers Cyber Intrusion” Headlines like these are appearing each day, most of which seem to apply to big box stores and large public companies.  With the rise of these attacks, companies are scrambling […]

Read More

A-LIGN’s Commitment to the Community this Holiday Season

The spirit of giving gave back this holiday season! For the third consecutive holiday season, A-LIGN donated more than $10,000 in 2015 to charities ofour clients’ choosing through Charity Gift Certificates.  While everyone always enjoys receiving holiday chocolates or a bottle of wine, A-LIGN has chosen a different route by sending Charity Gift Certificates to […]

Read More

Scaling a New Mountain: A-LIGN Re-imagines its Identity

In 2009, Managing Partner Scott Price and Partner Gene Geiger came together and declared A-lign open for business. Scott had been providing clients with compliance solutions for nearly 20 years. Before starting A-lign, Scott served as co-founder and President of SAS 70 Solutions – the first-ever CPA firm to specialize in…

Read More

The Connected World: A Look At Mobile Security?

Smartphones are a truly extraordinary technology.  Like an electronic Swiss Armor Knife, they are seemingly magical devices that provide a ton of services in the palms of our hands.  Each day, it seems, a new feature emerges enabling them to do even more.  Using a smartphone a person can video conference, navigate through the perils […]

Read More

Hacking The Holidays: Protect Your Credit Card Information

Unfortunately, the Grinch is not the only one out there wishing to steal Christmas.  While the holidays generally encompass a time of joy and giving, it can also bring with its share of troubles.  It is during these times that people will most often let their guard down.  In the search for the best deal, […]

Read More

Shellshock: Are You at Risk?

By: Stuart Rorer, Senior Consultant and Penetration Tester at A-LIGN It seems with each passing day more and more vulnerabilities are being released, exposing gaping holes in the security of systems across the globe. Last week a security bulletin was released to the public that exposed a new threat, affecting a wide range of systems […]

Read More

Understanding the Impact of Testing Exceptions in Type 2 SOC 1 and SOC 2 Reports

By: Ivan Reyes, Senior Consultant at A-LIGN Standards for Attestation Engagements No. 16 (“SSAE 16”) is an attestation standard whereby a service organization’s auditor issues an opinion on a service organization’s internal controls over financial reporting (ICFR). This is delivered in the form of a Service Organization Controls 1 (“SOC 1”) report. The report represents […]

Read More

3 Step Guide on How To Avoid Data Breaches Through Soft Targets

By: Chris Berberich, Senior Consultant and Penetration Tester at A-LIGN In the real world of budgets and limited personnel, prioritizing security resources is a must. For the majority of companies who depend on IT resources, prioritizing information security resources is based on the significance of an asset to their overall operations. All too often, I […]

Read More

How to Gain Efficiencies When Adding PCI DSS to Your SSAE 16 or SOC 2 Report

By: Lori Crooks, Managing Consultant at A-LIGN If you process, store or transmit credit card data and already have a SSAE 16 or SOC 2 report, you might be considering adding on a PCI DSS assessment – and it isn’t as painful as you may think! There are controls, such as physical security, logical access, […]

Read More

4 Tips on How to Select a Quality Outsourced Vendor

By: Lori Crooks, Managing Consultant at A-LIGN As the popularity of outsourcing parts of information technology functions continue to grow, one common concern still remains: How do you know that you are partnering with a quality vendor? Below are a few tips that we have learned from our experience, in auditing third party companies, that […]

Read More