Risk Advisory/Internal Audit
Articles 51 - 60 of 101
SOC 2 Reporting Standards Updated: Effective 12/15/2018
The AICPA recently updated the SOC 2 reporting standards to align with the COSO 2013 Internal Control Framework. The specific updates pertain to the updated
What Are Complementary Subservice Organization Controls And How Do They Impact SOC Reports?
Service organizations typically outsource functions such as data center hosting or transaction processing, to outside vendors, referred to as subservice
The IT Security Superhero's Guide to Good Cyber Hygiene
“Move along folks, nothing to see here!” is what I imagine stressed-out IT security crusaders worldwide murmur every night in their sleep.
Inclusive or Carve-Out: How Subservice Organizations Are Presented in SOC Reports
Service organizations typically use subservice organizations (i.e. third parties) to perform key controls that are necessary, in combination with the controls