A SAS70 audit allows a service organization to minimize the need for multiple auditors to assess a common set of processes. Using the SAS70, we can assist service organizations by providing a Type I or Type II report to help satisfy their customers. SAS 70 is now the standard for reporting on controls at a service organization, and many customers of service organizations now require a SAS 70 report. Whether you are new to a SAS70 or have been through the process, we can provide the following services:
| a. |
Readiness Assessment: For service organizations looking to issue a SAS70 or modify an existing report, our readiness assessment will guide you through the stages to becoming SAS70 compliant. The approach focuses on identifying, designing and documenting key processes, identifying control objectives and activities to satisfy customer requirements, and developing the template of the SAS70 report. We will customize our effort for particular facets of your service. This approach will prepare your business to pass the testing standards used by external auditors for SAS70 compliance.
|
| b. |
Attestation Audit: As a service provider with defined processes and controls, we can provide you with a SAS70 audit. Based on your needs, we can provide a Type I report on the design effectiveness of your controls or a Type II report on the operating effectiveness of your controls. At the conclusion of the engagement, we will work with you to finalize the report. This report will include an opinion from our CPA-licensed entity.
|
|
