Although I have written about these relatively new reports frequently, and for some time
…Read the rest of the article
5 Keys to Understanding a SOC 2 Report
Read the rest of the article
Read the rest of the article
FFIEC Handbook Update – SAS 70 Transition
The FFIEC has just updated their online IT Examination InfoBase to address the AICPA phase-out
…Read the rest of the article
2012 Compliance Trends, Part 2 – Vendor Management
In my first post in this series I discussed training (employee and customer) as a
…Read the rest of the article
SOC 2 vs. SAS 70 – 5 reasons to embrace the change
The SOC 2 and SOC 3 audit guides have recently been released by the AICPA
…Read the rest of the article
Vendor Management and the SAS 70 Replacement
I’ve written about the replacement for the SAS 70, which officially phases out on June
…Read the rest of the article
SOC Report Selection & Evaluation Aids
With the SAS 70 phasing out on 6/15, financial institutions have a dual challenge; determining
…Read the rest of the article
AICPA finalizes SAS 70 replacement
I wrote about this here as well, but it’s now official: The AICPA has clarified
…Read the rest of the article
Top 5 Compliance Trends for 2011 – Part 3
What do Social Media, Cloud Computing, Virtualization, Data Vaulting, Mobile Banking, and Core Services have
…Read the rest of the article
SAS 70 replacement…3 alternatives
I’ve written about this here, here and here, and we are still waiting
…Read the rest of the article
SAS 70 vs. SSAE 16 from the service provider perspective
Although it’s unclear what, if anything, the FFIEC* will say about the new standard
…Read the rest of the article