Regulatory Compliance, Governance and Security:

SAS 70


November 17, 2009  7:33 PM

SAS 70 Audits | How Expensive are They and What is the true Cost?



Posted by: Charles Denyer
charles denyer, cost of sas 70 audit, How expensive is a SAS 70, SAS 70, SAS 70 CPA firm, Statement on Auditing Standards No. 70, type i, type II

As a SAS 70 auditor for a nationally recognized boutique CPA firm, i can honestly attest to the fact that SAS 70 pricing is still all over the map. I hear of SAS 70 Type I audits costing as little as $12,000 to SAS 70 Type II reports costing as much as $70,000. That's not too say these prices are...

September 28, 2009  12:44 AM

PCI DSS | SAS 70 | Finding Resources to Learn about Compliance



Posted by: Charles Denyer
audits, charles denyer, PCI DSS, SAS 70, type i, type II

PCI DSS and SAS 70 Type I and Type II audits are a mainstay in today's regulatory arena. As such, i'm often asked what are some of the best resources available to learn about the Payment Card Industry Data Security...


September 28, 2009  12:27 AM

SAS 70 Audits for Data Centers | Why the Trend will Continue



Posted by: Charles Denyer
charles denyer, co-location, data centers, managed services, PCI DSS, SAS 70, type i, type ii audits

SAS 70 audits have quickly become a high priority for data centers, co-location entities and managed service providers as of late. And there are plenty of reasons why this trend will continue go grow. The number of organizations that have...


September 26, 2009  10:19 PM

GLBA and Data Centers | Tips for Compliance



Posted by: Charles Denyer
and debt collectors, charles denyer, consumers, customers, data centers, GLBA, loan brokers, non-bank mortgage lenders, privacy rules, providers of real estate settlement services, SAS 70, some financial or investment advisers, tax preparers

GLBA Privacy Rule Protecting the privacy of consumer information held by "financial institutions" and other third party vendors and service providers that provide “support services” to these “financial institutions” is at the heart of the financial privacy provisions of...


September 26, 2009  10:07 PM

HIPAA Privacy Rule | Attention Data Centers | Are you HIPAA Compliant?



Posted by: Charles Denyer
HIPAA Privacy rule, PCI, PHI, protected Health Information, SAS 70

First it was SAS 70, then PCI, now HIPAA is fast becoming a requirement for data centers. Here's what you need to know about the HIPAA Privacy Rule. An electronic medical record (EMR) is usually a computerized legal...


September 25, 2009  1:49 PM

HIPAA Compliance for Data Centers | The How and Why



Posted by: Charles Denyer
charles denyer, co-location, data centers, health insurance portability and accountability act, HIPAA, managed services, Payment Card Industry Data Security Standard, PCI DSS, SAS 70

HIPAA compliance for data centers is fast becoming a hot topic in regulatory compliance. It first started with Statement on Auditing Standards No. 70 (SAS 70), it is now moving onto the Payment Card Industry Data...


August 29, 2009  1:53 PM

Protecting the Privacy of Social Security Numbers Act | S. 141



Posted by: Charles Denyer
charles denyer, PCI DSS, Protecting the Privacy of Social Security Numbers Act | S. 141, SAS 70, social security numbers

Congress yet again is combating the fraud issues associated with private consumer information. The "Protecting the Privacy of Social Security Numbers Ac" (S. 141) is another good example of this. Essentially, this bill encompasses...


August 29, 2009  1:43 PM

Data Breach Notification Act (Introduced in Senate) | S. 139



Posted by: Charles Denyer
charles denyer, civil actions, Data Breach Notification Act, PCI DSS, s. 139, SAS 70, Senator Dianne Feinstein

Well, Regulatory Compliance, Governance, and Security is alive and well in Washington, D.C. again. Don't be fooled to thinking that the current laws will be the end. The ongoing push for these initiatives, along with an added emphasis on privacy and the protection of the consumer, will continue. As...


August 23, 2009  8:47 PM

Will HIPAA compliance ever have any Teeth like SAS 70 and PCI DSS?



Posted by: Charles Denyer
162, 45 CFR Parts 160, and 164, charles denyer, health insurance portability and accountability act, Health Insurance Reform: Security Standards, HIPAA, payment card industry data security standards, PCI, PCI DSS, SAS 70, The Department of Health and Human Services, type II

HIPAA, The Health Insurance Portability and Accountability Act, has been with us for years now. Upon reading through the vast and cumbersome documentation, one quickly realizes that HIPAA has many moving parts, enough to make you...


August 23, 2009  4:39 PM

GLBA, HIPAA, SAS 70, PCI DSS | what is next for Compliance?



Posted by: Charles Denyer
charles denyer, GLBA, HIPAA, payment card industry data security standards, PCI DSS, SAS 70, sas70, The Minnesota Plastic Card Security Act

The trend of late has been Payment Card Industry (PCI) Data Security Standards (DSS) compliance, along with a continued emphasis on the well known SAS 70 auditing standard. And occasionally, calls for GLBA and HIPAA compliance come calling also. As an...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: