June 16, 2009 2:35 AM
Posted by: Charles Denyer
assessments,
audits,
charles denyer,
cpa firm,
payment card industry data security standards,
PCI DSS,
PCI DSS Level 1 compliance,
report on compliance,
ROC,
sas 70 type ii auditSAS 70 audits, especially Type II reports and PCI DSS Level 1 Report on Compliance (ROC) assessments are dominating today's regulatory compliance arena. Painfully, as a SAS 70 auditor and a PCI DSS assessor, I keep hearing people talk about these two compliance initiatives as if they are one in...
December 30, 2008 3:21 PM
Posted by: Charles Denyer
audits,
payment card industry,
payment card industry data security standards,
PCI,
pci assessment,
pci compliance,
PCI DSS,
pci dss qsa,
regulatory compliance,
SAS 70,
sas 70 audit report,
SAS 70 checklist,
sas 70 control objectives,
SAS 70 readiness questionnaire,
sas 70 sample report,
SAS 70 Type I,
sas 70 type ii,
sas70,
sas70 sample reports,
Security,
SOX,
What is SAS 70?When ushering in the new year festivities, keep in mind that a number of regulatory compliance issues will be facing your organization also as 2009 looms just around the corner. No, they're not stocking stuffers, rather, they can be considered expensive, time-consuming, and arduous, to say the...
December 30, 2008 2:19 PM
Posted by: Charles Denyer
Auditing,
audits,
SAS 70,
sas 70 audit report,
SAS 70 overview presentation,
SAS 70 readiness questionnaire,
SAS 70 Type I,
sas 70 type ii,
sas70,
sas70 pricing,
sas70 readiness assessment questionnairesIf your organization is seeking to become SAS 70 Type I or SAS 70 Type II compliant for 2009, then its time to roll up your sleeves and learn all you can about what a SAS 70 audit actually is along with many of its inner workings? And why? Knowledge is power. The more information you have about...
November 28, 2008 10:43 PM
Posted by: Charles Denyer
audits,
SAS 70,
sas 70 audit report,
sas 70 control objectives,
SAS 70 readiness questionnaire,
sas 70 sample report,
SAS 70 Type I,
sas 70 type ii,
sas70,
sas70 readiness assessment questionnairesSuccessful completion of SAS 70 Type I or SAS 70 Type II audit reports should start with undertaking a SAS 70 Readiness Assessment. A readiness assessment is an important part of the audit process in that it helps identify weaknesses, gaps, and deficiencies within your organization's control...
September 26, 2008 6:17 PM
Posted by: Charles Denyer
audits,
Compliance,
PCI DSS,
pci dss qsa,
SAS 70,
sas70PCI DSS and SAS70 audits are two of the most common regulatory compliance initiatives currently facing many service organizations in today's current business climate. Add to the mix of some unique similarities that both PCI DSS and SAS70 possess, and you can have some marginal to meaningful...
September 20, 2008 2:23 PM
Posted by: Charles Denyer
audits,
SAS 70,
SAS 70 checklist,
SAS 70 readiness questionnaire,
sas70,
sas70 sample reports,
SecurityAs a SAS70 auditor, I'm often asked about how organizations should prepare for a SAS70 audit. In fact, companies and organizations alike commonly ask me for a SAS70 checklist. I simply reply by asking a checklist for what-on how to prepare for the audit, on what the audit scope is, etc? You see,...
September 8, 2008 4:04 PM
Posted by: Charles Denyer
audits,
Compliance,
regulatory compliance,
Sarbanes-Oxley,
sas70,
sas70 sample reports,
SecurityIf your company is needing to be SAS70 compliant, then a good start is to learn about what a SAS70 audit is and what the difference is between a SAS70 Type I & SAS70 Type II audit report.
In short, a SAS70 Type I is simply...
August 3, 2008 2:49 PM
Posted by: Charles Denyer
Auditing,
audits,
Compliance,
GLBA,
HIPAA,
payment card industry,
PCI,
qsa,
regulatory compliance,
Sarbanes-Oxley,
SAS 70,
sas70,
sas70 sample reports,
SecuritySAS70 audits have grown tremendously in the past five years, largely due in part to the explosive growth of federal regulatory compliance laws and legislation. Interestingly also, Payment Card Industry (PCI) compliance has also received much...
July 21, 2008 6:23 PM
Posted by: Charles Denyer
Auditing,
audits,
Compliance,
GLBA,
HIPAA,
regulatory compliance,
Sarbanes-Oxley,
SAS 70,
SAS 70 checklist,
SAS 70 download,
SAS 70 overview presentation,
SAS 70 readiness questionnaire,
Security,
SOX,
What is SAS 70?SAS70 Type I & Type II audits can be daunting indeed to many service organizations, but they shouldn't be. The more you learn about what SAS70 is, the better prepared you will be for going through a SAS70 audit. Let's start with...
