Last Chance: SSAE 16 & SOC Webinar

Posted on February 14, 2012 by

It’s your last chance to sign up for our free, informative webinar today at 2 P.M. ET with David Barton, Jon Long and Online Tech’s Risk Management & Security Officer Jason Yaeger for a discussion to help clarify data center audit standards and assessments. Register for our free webinar Tuesday, February 14, 2012 (today) from 2-3pm ET to discuss the differences between AICPA’s (American Institute of Certified Public Accountants) SOC (Service Organization Controls) audits and reports, other types of audits, and the difference between …

Join Online Tech, David Barton and Jon Long for a discussion to help clarify data center audit standards and assessments. Register for our free webinar Tuesday, February 14, 2012 from 2-3pm ET to discuss the differences between AICPA’s (American Institute of Certified Public Accountants) SOC (Service Organization Controls) audits and reports, other types of audits, and the difference between point-in-time, period of time, self-assesments and independent assessments. Sign up Now! Find more information about SOC 2 Hosting, SSAE 16 Hosting and read about the differences …

With smartphones and social media platforms becoming a major means of communication between friends, family and co-workers, we have come to appreciate the evolution of mobile applications. With over 500,000 apps on iPhone, 350,000 on Android and thousands more on other operating systems, there are many different apps out there that offer many different services and solutions to its users. In order for these apps to work, they require permissions to use certain features of your phone in order to …

With the confusion regarding what audits and auditor reports apply to certain aspects of data center standards, I felt the need to create a basic data center/hosting solution audit cheat sheet to simplify matters. Here’s your comprehensive guide to data center audits and reports. SAS 70 The Statement on Auditing Standard No. 70 was the original audit to measure a data center’s financial reporting and recordkeeping controls. Developed by the AICPA (American Institute of CPAs, there two types: Type 1 …

If you’re in a business that needs to meet Sarbanes-Oxley compliance, you probably know by now that the SAS 70 report expired earlier this year and was replaced with the SSAE 16 attestation. SSAE 16 is a lot like SAS 70, but adds an attestation set forth and signed by a company’s management that confirms that the described controls are in place and functional. You might have known that SSAE 16 is also called SOC 1. It’s just an alternative …

Efficient Auditing at Online Tech

Posted on December 12, 2011 by

We’ve completed a number of audits over the years. Each audit results in a report such as HIPAA, SAS 70, SSAE 16, SOC 1/SOC 3 and PCI.  It’s extremely expensive to do these audits well. The obvious costs are the auditors, but you can’t overlook the staff time and technology. We estimate it takes a few hundred hours of staff time for each audit, and we regularly automate many functions. This obviously doesn’t scale well enough for us. We have multiple data centers …

In April 2010, the AICPA (American Institute of Certified Public Accountants) announced the replacement of SAS 70 by a new and refined auditing standard, the Statement on Standards for Attestation Engagements or SSAE 16. While SAS 70 was originally intended for financial and accounting auditing, the SSAE 16 audit was established to verify data center operational and security excellence. In addition to SSAE 16, three new reports have also been established as the framework for examining controls at a service …

We’re in the final vigil for SAS 70. The oxygen has been brought out and the last rites are being given, and while a few data centers are scrambling to get a SAS  70 audit before the bell tolls, on June 15, 2011, SAS 70 will be dead.  Auditors will no longer conduct SAS 70 audits or issue SAS 70 audit reports, as the AICPA (American Institute of CPAs) switches to SSAE 16 and SOC 2/SOC3 reporting. Long Live SOC.  …

Last April, the AICPA announced that SAS 70 was going away, to be replaced by SSAE 16.  Since that time, additional discussion and guidance has resulted in more fine-tuning of the standards.  It turns out that the AICPA has done a lot more than just renumber and reorganize SAS 70.  The Institute has created three new Service Organization Control (SOC) reports intended to provide a framework for CPAs to examine controls at a service organization. SOC 1: SSAE 16 and …

SOC 2 and SOC 3 provide much more stringent audit requirements with a stronger set of controls and requirements specifically designed around data center service organizations.

Get started now. Exceptional service awaits.

Live Chat