Regulatory Compliance, Governance and Security:

October, 2008

1

October 27, 2008  9:22 PM

SAS 70 Audits | Make Sure to Get a “Fixed Fee” for the Audit



Posted by: Charles Denyer
SAS 70, sas 70 audit report, sas 70 rfp, sas 70 sample report, SAS 70 Type I, sas 70 type ii, sas70 pricing, sas70 readiness assessment questionnaires

SAS 70 audits today are being conducted by CPA firms large and small, big and tall. Though they vary greatly in size, complexity and audit skills, what seems to be the industry standard is a "fixed fee" for the audit. Fixed in meaning that all...

October 27, 2008  9:03 PM

SAS 70 Audit Reports | What You Need to Know About Them



Posted by: Charles Denyer
regulatory compliance, SAS 70, sas 70 sample report, SAS 70 Type I, sas 70 type ii

SAS 70 Type I and SAS 70 Type II audits are fast becoming a mainstay in today's regulatory compliance environment. If your organization is seeking to become SAS 70 Type I or SAS 70 Type II compliant in the near future, then here are some helpful tips in adequately preparing for all aspects of the...


October 27, 2008  8:51 PM

PCI DSS Compliance in Today’s Heightened Security World



Posted by: Charles Denyer
payment card industry, pci assessment, pci dss qsa, policies and procedures, qsa

PCI DSS stands for Payment Card Industry Data Security Standards. If you are a merchant or service provider who is directly involved in the processing, storage, or transmission of transaction data or cardholder data, then you should be looked upon as PCI...


October 27, 2008  8:43 PM

PCI DSS | Payment Card Industry Compliance Tips to Use



Posted by: Charles Denyer
payment card industry, pci assessment, pci dss qsa, policies and procedures, qsa

PCI DSS is fast becoming a requirement for many merchants and service providers in todays economy that are directly involved in the processing, storage, or transmission of transaction data or cardholder data. In short, they should be...


October 19, 2008  11:54 PM

PCI DSS | Helpful Tips on Becoming PCI DSS Compliant



Posted by: Charles Denyer
payment card industry, pci assessment, pci dss qsa, policies and procedures

PCI DSS-It's a well-known phrase in today's growing regulatory compliance landscape. Because PCI DSS and it's standards, requirements, and other supporting factors are relatively new, there still seems to be a high degree of uncertainty of who needs to be PCI DSS compliant and why. the who, what,...


October 19, 2008  11:45 PM

PCI DSS Compliance | It Starts with Policies & Procedures



Posted by: Charles Denyer
pci compliance, PCI DSS, policies and procedures

PCI DSS compliance can be considered a costly, time consuming assessment for any merchant or service provider that has to obtain PCI DSS compliance. What many organizations fail to recognize is that within the PCI DSS standards are a slew of requirements for documents policies and procedures on a...


October 19, 2008  9:28 PM

SAS 70 Type II Audit Reports | A SAS 70 Auditor’s Expert Opinion



Posted by: Charles Denyer
SAS 70, SAS 70 download, SAS 70 Type I, sas 70 type ii, sas70

SAS 70 Type I and SAS 70 Type II audits are being required more and more by service organizations in today's growing regulatory compliance and heightened corporate governance environment. Thus, if you are a service organization or third party providers of critical services to another entity, you...


October 19, 2008  9:17 PM

SAS 70 and PCI DSS | An Auditor’s Expert Opinion



Posted by: Charles Denyer
PCI DSS, SAS 70 Type I, sas 70 type ii, sas70

Many organizations are having to complete both a SAS 70 Type I or SAS 70 Type II audit along with being Payment Card Industry (PCI) compliant. With that being said, I am often asked if you can create efficiencies of scale if a firm does both the SAS 70 audit and the PCI assessment. That answer is...


October 19, 2008  8:27 PM

SAS70 Audit Reports | Understanding SAS70 Type I & Type II Audits



Posted by: Charles Denyer
regulatory compliance, SAS 70 Type I, sas 70 type ii, sas70

Does your organization need to be SAS70 compliant? If so, many people often ask me if they have to complete a SAS70 Type I audit before doing a SAS70 Type II audit. And the answer? Well, it all depends on a number of factors, such as: 1. Has your organization ever gone through a SAS70 audit before,...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: