SOC 1

What is SSAE 16?  SSAE 16, otherwise known as Statement on Standards for Attestation Engagements No. 16, was an auditing standard developed by the American Institute of Certified Public Accountants (AICPA). It was issued in April 2010 and was specifically designed for service organizations that provide outsourced services. SSAE 16 was introduced to enhance the …

What is SSAE 18? SSAE 18, also known as Statement on Standards for Attestation Engagements No. 18, is an auditing standard developed by the American Institute of Certified Public Accountants (AICPA). It recently replaced the previous standard SSAE 16 in May 2017 and introduced several changes and enhancements to meet the evolving needs of the …

SOC 2 attestation, explained Breaking it down into definitions, an ‘attestation’ is defined as “a declaration that something exists”, and “evidence or proof of something”. A synonym for attestation is the word ‘vouch’. That is the best way to simplify this. What is a SOC 2 attestation report in the compliance and audit world? Well, …

Overview of subservice organizations As part of the SOC 1 or SOC 2 process, an organization needs to go through an exercise to identify vendors that are performing a service to the organization. Once those vendors are identified, the organization needs to understand which of those services performed have an impact on the control environment …

Overview of SOC 1 compliance Outsourcing is a growing trend and companies increasingly depend on third-party providers to deliver critical services. Ten years ago, companies may have used only one or two major third-party services providers, now often depend on many providers to deliver any number of services. Third-party providers are becoming an increasingly growing …