Regulatory Compliance, Governance and Security:

audits


September 28, 2009  12:44 AM

PCI DSS | SAS 70 | Finding Resources to Learn about Compliance



Posted by: Charles Denyer
audits, charles denyer, PCI DSS, SAS 70, type i, type II

PCI DSS and SAS 70 Type I and Type II audits are a mainstay in today's regulatory arena. As such, i'm often asked what are some of the best resources available to learn about the Payment Card Industry Data Security...

June 16, 2009  2:35 AM

SAS 70 Audits and PCI DSS | Yes, There is a Big Difference



Posted by: Charles Denyer
assessments, audits, charles denyer, cpa firm, payment card industry data security standards, PCI DSS, PCI DSS Level 1 compliance, report on compliance, ROC, sas 70 type ii audit

SAS 70 audits, especially Type II reports and PCI DSS Level 1 Report on Compliance (ROC) assessments are dominating today's regulatory compliance arena. Painfully, as a SAS 70 auditor and a PCI DSS assessor, I keep hearing people talk about these two compliance initiatives as if they are one in...


December 30, 2008  3:21 PM

SAS 70 | PCI DSS | 2009 Regulatory Compliance Checklist



Posted by: Charles Denyer
audits, payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, regulatory compliance, SAS 70, sas 70 audit report, SAS 70 checklist, sas 70 control objectives, SAS 70 readiness questionnaire, sas 70 sample report, SAS 70 Type I, sas 70 type ii, sas70, sas70 sample reports, Security, SOX, What is SAS 70?

When ushering in the new year festivities, keep in mind that a number of regulatory compliance issues will be facing your organization also as 2009 looms just around the corner. No, they're not stocking stuffers, rather, they can be considered expensive, time-consuming, and arduous, to say the...


December 30, 2008  2:19 PM

SAS 70 Type II Audits | Become SAS 70 Compliant in a Cost Effective Manner



Posted by: Charles Denyer
Auditing, audits, SAS 70, sas 70 audit report, SAS 70 overview presentation, SAS 70 readiness questionnaire, SAS 70 Type I, sas 70 type ii, sas70, sas70 pricing, sas70 readiness assessment questionnaires

If your organization is seeking to become SAS 70 Type I or SAS 70 Type II compliant for 2009, then its time to roll up your sleeves and learn all you can about what a SAS 70 audit actually is along with many of its inner workings? And why? Knowledge is power. The more information you have about...


November 28, 2008  10:43 PM

SAS 70 Audit Reports | Start with a SAS 70 Readiness Assessment



Posted by: Charles Denyer
audits, SAS 70, sas 70 audit report, sas 70 control objectives, SAS 70 readiness questionnaire, sas 70 sample report, SAS 70 Type I, sas 70 type ii, sas70, sas70 readiness assessment questionnaires

Successful completion of SAS 70 Type I or SAS 70 Type II audit reports should start with undertaking a SAS 70 Readiness Assessment. A readiness assessment is an important part of the audit process in that it helps identify weaknesses, gaps, and deficiencies within your organization's control...


September 26, 2008  6:17 PM

PCI DSS & SAS70 Audits | If you need both, then read on…



Posted by: Charles Denyer
audits, Compliance, PCI DSS, pci dss qsa, SAS 70, sas70

PCI DSS and SAS70 audits are two of the most common regulatory compliance initiatives currently facing many service organizations in today's current business climate. Add to the mix of some unique similarities that both PCI DSS and SAS70 possess, and you can have some marginal to meaningful...


September 20, 2008  2:23 PM

SAS70 Checklist | How to Prepare for a SAS70 Audit



Posted by: Charles Denyer
audits, SAS 70, SAS 70 checklist, SAS 70 readiness questionnaire, sas70, sas70 sample reports, Security

As a SAS70 auditor, I'm often asked about how organizations should prepare for a SAS70 audit. In fact, companies and organizations alike commonly ask me for a SAS70 checklist. I simply reply by asking a checklist for what-on how to prepare for the audit, on what the audit scope is, etc? You see,...


September 8, 2008  4:04 PM

SAS70 Reports | Know the Difference Between Type I & Type II



Posted by: Charles Denyer
audits, Compliance, regulatory compliance, Sarbanes-Oxley, sas70, sas70 sample reports, Security

If your company is needing to be SAS70 compliant, then a good start is to learn about what a SAS70 audit is and what the difference is between a SAS70 Type I & SAS70 Type II audit report. In short, a SAS70 Type I is simply...


August 3, 2008  2:49 PM

SAS70 & PCI Compliance | Creating Audit Efficiencies



Posted by: Charles Denyer
Auditing, audits, Compliance, GLBA, HIPAA, payment card industry, PCI, qsa, regulatory compliance, Sarbanes-Oxley, SAS 70, sas70, sas70 sample reports, Security

SAS70 audits have grown tremendously in the past five years, largely due in part to the explosive growth of federal regulatory compliance laws and legislation. Interestingly also, Payment Card Industry (PCI) compliance has also received much...


July 21, 2008  6:23 PM

SAS70 Audit Guide | Section 5.0 | SAS70 Roadmap for Compliance



Posted by: Charles Denyer
Auditing, audits, Compliance, GLBA, HIPAA, regulatory compliance, Sarbanes-Oxley, SAS 70, SAS 70 checklist, SAS 70 download, SAS 70 overview presentation, SAS 70 readiness questionnaire, Security, SOX, What is SAS 70?

SAS70 Type I & Type II audits can be daunting indeed to many service organizations, but they shouldn't be. The more you learn about what SAS70 is, the better prepared you will be for going through a SAS70 audit. Let's start with...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: