How to Determine a Quality Audit Report

By: Sara McLane, Senior Auditor at A-LIGN

Service auditor reports are a great way for any service organization to showcase its compliance, to retain customers and to gain a competitive advantage. But how do you really know that your organization has just obtained a quality audit report? And why does quality matter as long as an opinion has been issued?

Audit reports and security assessments for various standards such as SSAE 16, SOC 2 and PCI DSS have seen tremendous growth in demand and popularity. The amount and types of service auditors providing these reports have followed the trend. Organizations have a variety of options when choosing a service provider from the Big Four, to industry specialized firms or local CPA firms. However, when selecting the right provider for your organization quality goes beyond the standard requirements and licensing such as CPA licensure, PCAOB registration, AICPA peer review participation or ANAB ISO 27001 accreditation.

Knowing that your service auditor is licensed, registered and accredited is the first sign of quality, but A-LIGN believes that quality comes from within. We believe that our people make the difference in the quality of our firm.

Our Team

All of A-LIGN’s auditors and directors have former Big 4 experience specializing in compliance audits or have more than ten years of professional experience, as well as industry experience leading internal teams with compliance initiatives.

We have assembled a team of audit professionals who have extensive experience in providing security, assurance, and compliance services and also ensure that they maintain certifications such as, Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified Information System Security Professional (CISSP), Qualified Security Assessor (QSA), ISO 27001 Lead Auditor Certification (ISO27001 LA), Certified Professional Ethical Hacker (C) PEH).

We aim to be the knowledge leader in our field and provide our team members annual training and certification plans. We hold semi-annual company-wide training sessions and provide CPE credit through webinars.

Audit Review

Each of A-LIGN’s audit reports undergoes a rigorous internal review. The reports are executed by industry-leading auditors, formatted by highly skilled reporting specialists, reviewed against service specific quality control checklists and then approved by one of our directors before the final report is ever sent to our client in even draft form.

Quality matters to us – and it should matter to your organization as well. A quality audit report can provide your organization a competitive edge. Let A-LIGN help you compete!

If you have questions about how A-LIGN can provide a SOC 1/SSAE 16, SOC 2, or a PCI DSS assessment for your organization, please call: 888-702-5446 or email us at [email protected]