Regulatory Compliance, Governance and Security:

regulatory compliance


February 23, 2009  1:11 AM

What is SAS 70 | A Question I’m Often Asked by Service Organizations



Posted by: Charles Denyer
aicpa, regulatory compliance, SAS 70 Type I, sas 70 type ii, sas70.us.com, service organizations, What is SAS 70?

What is SAS 70? For us in the regulatory compliance and Information Technology world, this would be an absurd question. Well, put yourself in the shoes of businesses who work hard everyday, struggling to make ends meet, and then suddenly,...

December 30, 2008  3:21 PM

SAS 70 | PCI DSS | 2009 Regulatory Compliance Checklist



Posted by: Charles Denyer
audits, payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, regulatory compliance, SAS 70, sas 70 audit report, SAS 70 checklist, sas 70 control objectives, SAS 70 readiness questionnaire, sas 70 sample report, SAS 70 Type I, sas 70 type ii, sas70, sas70 sample reports, Security, SOX, What is SAS 70?

When ushering in the new year festivities, keep in mind that a number of regulatory compliance issues will be facing your organization also as 2009 looms just around the corner. No, they're not stocking stuffers, rather, they can be considered expensive, time-consuming, and arduous, to say the...


November 23, 2008  7:46 PM

SAS 70 Type II Audit Reports | Why SAS 70 is Here to Stay



Posted by: Charles Denyer
GLBA, HIPAA, regulatory compliance, Sarbanes-Oxley, SAS 70, sas 70 audit report, sas 70 control objectives, sas 70 type ii, sas70, section 404 sox, SOX, What is SAS 70?

We live in a world of heightened regulatory compliance and corporate governance. From the passage of the 2002 Sarbanes-Oxley Act to numerous other pieces of legislation (HIPAA, GLBA, just to name a few), "comply, comply, comply" is the new mantra being pushed throughout organizations and at all...


November 23, 2008  7:24 PM

Payment Card Industry (PCI DSS) Compliance | Requirement 1.1.2



Posted by: Charles Denyer
payment card industry, payment card industry data security standards, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, pci dss requirement 1.1.2, policies and procedures, qsa, regulatory compliance, SAS 70, sas 70 audit report

Payment Card Industry (PCI) Data Security Standards (DSS) compliance for PCI DSS requirement 1.1.2 calls for "Current network diagram with all connections to cardholder data, including any wireless networks" Thus, testing for validating...


November 23, 2008  7:03 PM

Payment Card Industry (PCI DSS) Compliance | Requirement 1.1



Posted by: Charles Denyer
configurations, firewalls, payment card industry, PCI, pci assessment, pci compliance, PCI DSS, pci dss qsa, ports, qsa, regulatory compliance, requirement 1.0, requirement 1.1

Payment Card Industry (PCI) Data Security Standards (DSS) for Requirement 1.1 require organizations to "Establish firewall and router configuration standards". This requirement falls under the functional area of the overall Requirement...


October 27, 2008  9:03 PM

SAS 70 Audit Reports | What You Need to Know About Them



Posted by: Charles Denyer
regulatory compliance, SAS 70, sas 70 sample report, SAS 70 Type I, sas 70 type ii

SAS 70 Type I and SAS 70 Type II audits are fast becoming a mainstay in today's regulatory compliance environment. If your organization is seeking to become SAS 70 Type I or SAS 70 Type II compliant in the near future, then here are some helpful tips in adequately preparing for all aspects of the...


October 19, 2008  8:27 PM

SAS70 Audit Reports | Understanding SAS70 Type I & Type II Audits



Posted by: Charles Denyer
regulatory compliance, SAS 70 Type I, sas 70 type ii, sas70

Does your organization need to be SAS70 compliant? If so, many people often ask me if they have to complete a SAS70 Type I audit before doing a SAS70 Type II audit. And the answer? Well, it all depends on a number of factors, such as: 1. Has your organization ever gone through a SAS70 audit before,...


September 26, 2008  5:45 PM

SAS70 Frequently Asked Questions | A guide to the “Hot Topics”



Posted by: Charles Denyer
regulatory compliance, SAS 70, sas70, sas70 readiness assessment questionnaires, sas70 sample reports

SAS70 Auditing has become a staple in today's growing regulatory compliance world. As such, I have put together a list of questions and answers for SAS70 issues that are commonly asked to me: 1. How much does a SAS70 audit cost? That depends on a number of issues, such as the scope of the...


September 21, 2008  5:01 PM

SAS70 Audits | A Great Way to Grow your Business



Posted by: Charles Denyer
corporate governance, regulatory compliance, sas 70 rfp, SAS 70 Type I, sas 70 type ii, sas70

SAS70 audits can be seen as expensive, time consuming, and arduous, to say the least. What's important to note though is that a SAS70 audit can be seen as a great tool for helping promote and grow your business. Just take a look at the heightened regulatory compliance and corporate governance...


September 8, 2008  4:04 PM

SAS70 Reports | Know the Difference Between Type I & Type II



Posted by: Charles Denyer
audits, Compliance, regulatory compliance, Sarbanes-Oxley, sas70, sas70 sample reports, Security

If your company is needing to be SAS70 compliant, then a good start is to learn about what a SAS70 audit is and what the difference is between a SAS70 Type I & SAS70 Type II audit report. In short, a SAS70 Type I is simply...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: