Sign In
SecureState home
SecureState
Skip navigation links
About Us
Audit & Compliance
Profiling
e.Discovery
Risk Management
Government
Skip Navigation LinksSecureState > Audit & Compliance > SAS 70


Skip navigation links
Audit & Compliance
Audit & Compliance
INFOSEC
Payment Card Industry
NERC CIP
ISO 27001
ITIL Security
HIPAA
TG-3
SAS 70
SOX
GLBA
External CPA Support
Control Framework Review
Cross Compliance Mapping
Continual Compliance
AC Training
Contact Us
Careers
Clients By Industry
Competitive Landscape
Media Center
Free Tools
Events
FAQ
Blog

SAS 70 


SAS-70 is an international auditing standard developed by the American Institute of Certified Public Accountants (AICPA). This standard is defined in the Statement on Auditing Standards (SAS) No. 70 ("Service Organizations"). Unlike some other internal control review standards, SAS-70 provides a firm and its auditor with the assurance that a service organization (typically an outsourcing firm or any other subcontractor) properly conceives implements and discloses its internal control.

Why we're the best:

  • Through partnerships with CPA firms, we review the technical aspects of a SAS 70
  • Based on our experience, no other company can speak to the business and technical sides of security as well as SecureState
  • We only use CISA certified consultants for SAS 70 audits
  • CPA's can leverage MyState Portal for purposes of collaboration/repeatable audits/documentation preservation
  • We use the CoBIT framework for a consistent approach and framework that will be recognizable by any external auditor

SAS 70 Type II Design What we do:

1. SecureState's Compliance Framework (For more info click here)

SAS 70 Type II Pre-Audit/CPA Assistance What we do:

1. SecureState's Compliance Framework (For more info click here)

What you get:

1. SecureState Compliance Deliverables (For more info click here)
For more information about SAS 70... Please contact a SecureState representative 800-903-6264

Virtual Compliance Officer

SecureState will utilize its proprietary tool, the Virtual Compliance Officer, to develop a GAP analysis for the SAS 70 requirements.  This will help to identify the gaps between your company’s current state and desired state.

Relevant industries

Services

As of 2006, there are two versions of a SAR, commonly known as Type I and Type II reports.

A Type I report provides a description of a service organization’s controls as a point in time, while a Type II report provides assurance of the operating effectiveness over controls for a period of time.

The Control Objectives for Information and related Technology (CobiT) is a framework developed by the Information Systems Audit and Control Association (ISACA) and the IT Governance Institute (ITGI). It defines goals for the controls that should be used to properly manage IT and ensure IT maps to business needs.


Chat Live with SecureState

Website designed and developed by SecureState, © 2008 SecureState LLC. All rights reserved. | Privacy Policy | Report discrepancy