Regulatory Compliance, Governance and Security:

September, 2008

1

September 26, 2008  6:17 PM

PCI DSS & SAS70 Audits | If you need both, then read on…



Posted by: Charles Denyer
audits, Compliance, PCI DSS, pci dss qsa, SAS 70, sas70

PCI DSS and SAS70 audits are two of the most common regulatory compliance initiatives currently facing many service organizations in today's current business climate. Add to the mix of some unique similarities that both PCI DSS and SAS70 possess, and you can have some marginal to meaningful...

September 26, 2008  5:45 PM

SAS70 Frequently Asked Questions | A guide to the “Hot Topics”



Posted by: Charles Denyer
regulatory compliance, SAS 70, sas70, sas70 readiness assessment questionnaires, sas70 sample reports

SAS70 Auditing has become a staple in today's growing regulatory compliance world. As such, I have put together a list of questions and answers for SAS70 issues that are commonly asked to me: 1. How much does a SAS70 audit cost? That depends on a number of issues, such as the scope of the...


September 26, 2008  5:33 PM

SAS70 Audit Reports for Data Centers |Important Facts to Know



Posted by: Charles Denyer
co-location, data centers, managed services, SAS 70, sas 70 type ii, sas70, sas70 sample reports

SAS70 audits have quickly become a mainstay in the world of data centers, managed services and co-location entities, and this will no doubt continue to grow. This is happening for a large number of reasons, but primarily data centers (and any variant thereof, such as managed services, co-location...


September 26, 2008  5:18 PM

SAS70 Pricing for Type I & Type II Audits | Important Facts



Posted by: Charles Denyer
SAS 70 Type I, sas 70 type ii, sas70, sas70 pricing, sas70 sample reports

SAS70 pricing for Type I and Type II audits is still a hot topic for regulatory compliance these days, and for good reason. The huge rise in SAS70 audits over the past five years has created a true need for accountants and auditors to perform these specialized audits. As a SAS70 auditor for many...


September 21, 2008  5:08 PM

SAS70 Glossary of Audit Terms | Learn Important Terms & Phrases



Posted by: Charles Denyer
glossary of auditing terms sas 70, SAS 70, SAS 70 Type I, sas 70 type ii, sas70

Want to think and talk like a SAS70 auditor? Well, if you are a service organization that will soon be undergoing a SAS70 audit, then it's a good idea to gain an understanding of some of the most commonly used term for Statement on Auditing Standards No. 70. Do you know the difference between the...


September 21, 2008  5:01 PM

SAS70 Audits | A Great Way to Grow your Business



Posted by: Charles Denyer
corporate governance, regulatory compliance, sas 70 rfp, SAS 70 Type I, sas 70 type ii, sas70

SAS70 audits can be seen as expensive, time consuming, and arduous, to say the least. What's important to note though is that a SAS70 audit can be seen as a great tool for helping promote and grow your business. Just take a look at the heightened regulatory compliance and corporate governance...


September 21, 2008  4:51 PM

SAS70 Control Objectives | Here’s What You Need to Know



Posted by: Charles Denyer
sas 70 control objectives, SAS 70 Type I, sas 70 type ii, sas70, sas70 sample reports

As a SAS70 auditor, organizations often ask me how are control objectives developed. Technically, it is the service organization's responsibility to develop SAS70 control objectives. However, in reality, it's looked upon as a collaborative effort by a number of parties involved in the overall SAS70...


September 20, 2008  4:32 PM

SAS70 Audits & Business Continuity Disaster Recovery (BCDR)



Posted by: Charles Denyer
BCDR, BCM, Business Continuity Disaster Recovery, SAS 70, sas70, sas70 sample reports, What is SAS 70?

SAS70-I'm often asked about Business Continuity & Disaster Recovery (BCDR) when preparing a new client for a SAS70 Type I or Type II audit that. Specifically, they ask me if it is a requirement for a SAS70 audit and what should they be doing in order to adequately prepare and document a BCDR...


September 20, 2008  2:23 PM

SAS70 Checklist | How to Prepare for a SAS70 Audit



Posted by: Charles Denyer
audits, SAS 70, SAS 70 checklist, SAS 70 readiness questionnaire, sas70, sas70 sample reports, Security

As a SAS70 auditor, I'm often asked about how organizations should prepare for a SAS70 audit. In fact, companies and organizations alike commonly ask me for a SAS70 checklist. I simply reply by asking a checklist for what-on how to prepare for the audit, on what the audit scope is, etc? You see,...


September 8, 2008  4:04 PM

SAS70 Reports | Know the Difference Between Type I & Type II



Posted by: Charles Denyer
audits, Compliance, regulatory compliance, Sarbanes-Oxley, sas70, sas70 sample reports, Security

If your company is needing to be SAS70 compliant, then a good start is to learn about what a SAS70 audit is and what the difference is between a SAS70 Type I & SAS70 Type II audit report. In short, a SAS70 Type I is simply...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: