July 8, 2009 7:27 PM
Posted by: Charles Denyer
control environment,
gap analysis,
SAS 70,
sas 70 readiness assessment,
sas 70 resource guide,
sas70.us.com,
type i,
type IIMany service organizations having to undergo SAS 70 Type I or SAS 70 Type II compliance would greatly benefit from a SAS 70 Readiness Assessment. So, let's clear the air as to what this actually is.
A SAS 70 Readiness Assessment should be a proactive exercise which actually benefits the overall...
June 3, 2009 6:34 PM
Posted by: Charles Denyer
charles denyer,
client funds,
File No. S7-09-09,
internal control report,
qualified custodian,
sample sas 70 type II report,
SAS 70,
securities,
surprise examination,
The investment Advisers Act of 1940The SAS 70 auditing standard is sure to become a necessary element of the proposed changes for the Investment Advisers Act of 1940. The SEC released a draft of proposed changes regarding “Custody of Funds or Securities of Clients by Investment Advisers” (
May 30, 2009 8:26 PM
Posted by: Charles Denyer
cash and security positions,
charles denyer,
client funds or securities along with performing custodial duties and operations,
control objectives,
custodial operations,
Custody of Funds or Securities of Clients by Investment Advisers,
File No. S7-09-09,
investment advisers,
investment advisors,
market values of securities,
net settlement procedures,
sample sas 70 type II report,
SAS 70,
sas70.us.com,
securities incomeThe SEC released a draft of proposed changes regarding “Custody of Funds or Securities of Clients by Investment Advisers” (File No. S7-09-09), calling for more oversight and controls over...
May 10, 2009 2:59 PM
Posted by: Charles Denyer
aicpa,
american institute of certified public accountants,
charles denyer,
coso,
internal controls,
sas 55,
SAS 70,
SAS 70 Type I,
sas 78,
The Committee of Sponsoring Organizations of the Treadway Commission,
type ii auditCOSO is a widely used and accepted internal control framework in today's growing corporate governance initiatives. It's also heavily found in Statement on Auditing Standards No. 70 (SAS 70) audits.
The Committee of Sponsoring Organizations of the Treadway Commission (COSO) framework essentially...
April 27, 2009 11:18 AM
Posted by: Charles Denyer
charles denyer,
cloud,
cloud computing,
pci audits,
SAS 70,
VirtualizationThe whole new wave of I.T. spreading through businesses today is that of virtualization, cloud computing, the "cloud", or any other similar and broad based terms or themes. Many people have hailed this new concept for obvious reasons, such as the reduction of overall hardware gear and space taken...
April 27, 2009 2:06 AM
Posted by: Charles Denyer
charles denyer,
Compliance,
corporate governance,
PCI,
Sarbanes-Oxley,
SAS 70,
SOXSarbanes Oxley and SAS 70 audits have had a monumental impact on corporate governance and compliance. So much so, they almost invented a huge part of the pie. As a SAS 70 auditor, i'm often asked what does the...
March 20, 2009 6:20 PM
Posted by: Charles Denyer
audit,
charles denyer,
general controls audit,
managed services sas 70,
SAS 70,
sas 70 compliance,
sas 70 resource guide,
sas 70 type iiSAS 70 compliance is commonplace for many of today's businesses. Unfortunately, one of the missing ingredients in understanding SAS 70 compliance is the scope of the audit. That's right. The who, what, when, where, and why of the actual SAS 70 audit process....
February 18, 2009 7:53 PM
Posted by: Charles Denyer
payment card industry data security standards (PCI DSS),
PCI DSS,
pci dss assessments,
qsa,
SAS 70,
sas 70 audits,
sas70As a SAS 70 auditor and a PCI QSA, i'm often asked about the efficiencies of scale that can be achieved with SAS 70 audits and PCI DSS assessments. I have blogged about this a few times before, so let me be more clear and transparent in what i believe can actually be obtained in regards to audit...
