Tag: SAS 70

Although SAS 70 (Statement on Auditing Standards) has been dead for quite some time now, we’ve found that those lagging in the health IT industry may still be confused about why SAS 70 is no longer the audit to look for when it comes to ensuring security with a cloud hosting provider. In fact, false information about SAS 70 as a qualifier for cloud computing security supporting the healthcare industry is still an issue. Some suggest that SAS 70 is …

Online Tech’s Director of Operations and previous Crain’s Detroit CIO of the Year, Jason Yaeger, is presenting today at the 7×24 Exchange Southern California Chapter’s meeting, Data Center Compliance – It’s Mission Critical! As Online Tech’s Risk Management and Security Officer, Jason has had experience leading the company through the successful completion of SAS 70 Type I, SAS 70 Type II, SSAE 16, HIPAA and PCI. Where: T5 Data Center, El Segundo, CA Time: 3:30-6PM Date: Tuesday, April 23, 2013 …

Google Analytics is your best friend at year’s end to find the top trending topics of your blog or website – so I thought I’d share a bit of the gold with everyone to help guide them through next year. Ease your data center audit and cloud computing concerns (they can be harrowing, I know) and learn a thing or two from our expertly written and researched articles receiving top hits in 2012: SAS 70, SSAE 16, SOC 2 and …

Online Tech Radio Show on SOC 2 & Compliance

Posted on September 13, 2012 by

April Sage, Director of Healthcare Vertical and Marketing discussed recent developments in the risk assurance industry on Risk Assurance Talk Radio with Jon Long, Audit Senior Manager at CompliancePoint. Speaking from the perspective of the first data center operator to achieve a SOC 2 report, April discusses Online Tech’s dedication to audits and the many different types of compliance in order to better serve diverse industry security needs. Listen to a recording of the radio talk show here: Listen to …

Last Chance: SSAE 16 & SOC Webinar

Posted on February 14, 2012 by

It’s your last chance to sign up for our free, informative webinar today at 2 P.M. ET with David Barton, Jon Long and Online Tech’s Risk Management & Security Officer Jason Yaeger for a discussion to help clarify data center audit standards and assessments. Register for our free webinar Tuesday, February 14, 2012 (today) from 2-3pm ET to discuss the differences between AICPA’s (American Institute of Certified Public Accountants) SOC (Service Organization Controls) audits and reports, other types of audits, and the difference between …

Join Online Tech, David Barton and Jon Long for a discussion to help clarify data center audit standards and assessments. Register for our free webinar Tuesday, February 14, 2012 from 2-3pm ET to discuss the differences between AICPA’s (American Institute of Certified Public Accountants) SOC (Service Organization Controls) audits and reports, other types of audits, and the difference between point-in-time, period of time, self-assesments and independent assessments. Sign up Now! Find more information about SOC 2 Hosting, SSAE 16 Hosting and read about the differences …

With the confusion regarding what audits and auditor reports apply to certain aspects of data center standards, I felt the need to create a basic data center/hosting solution audit cheat sheet to simplify matters. Here’s your comprehensive guide to data center audits and reports. SAS 70 The Statement on Auditing Standard No. 70 was the original audit to measure a data center’s financial reporting and recordkeeping controls. Developed by the AICPA (American Institute of CPAs, there two types: Type 1 …

Efficient Auditing at Online Tech

Posted on December 12, 2011 by

We’ve completed a number of audits over the years. Each audit results in a report such as HIPAA, SAS 70, SSAE 16, SOC 1/SOC 3 and PCI.  It’s extremely expensive to do these audits well. The obvious costs are the auditors, but you can’t overlook the staff time and technology. We estimate it takes a few hundred hours of staff time for each audit, and we regularly automate many functions. This obviously doesn’t scale well enough for us. We have multiple data centers …

How much could a data breach incident cost your company? Based on the results of The Ponemon Institute’s recent 2010 Annual Study: U.S. Cost of a Data Breach, breach incidents are increasing both in direct and indirect costs. The healthcare, pharmaceutical, financial and communications industries are shouldering the greatest expense per record breach. On average, companies are spending 7 percent more per data breach event since 2009, up $7.2 million from $6.8 million. The study found a positive correlation between …

SOC 1, SOC 2 & SOC 3 Report Comparison

Posted on August 19, 2011 by

In April 2010, the AICPA (American Institute of Certified Public Accountants) announced the replacement of SAS 70 by a new and refined auditing standard, the Statement on Standards for Attestation Engagements or SSAE 16. While SAS 70 was originally intended for financial and accounting auditing, the SSAE 16 audit was established to verify data center operational and security excellence. In addition to SSAE 16, three new reports have also been established as the framework for examining controls at a service …

Get started now. Exceptional service awaits.

Live Chat