Gain a better understanding of the reporting requirements regarding compliance under SSAE 18.
This topic will discuss the rules of SSAE 18s and the benefit/costs for the organizations and auditors using the SSAE 18. Discuss some of the new types of engagements, including comparison of SOC 1, SOC 2 and SOC3.
Finally, discuss the different types of IT and security controls, including practical and cost effective implementation.
Learning Objectives:
- You will be able to review the SOC report types.
- You will be able to discuss the key items to review in SOC reports.
- You will be able to identify information provided by independent auditor.
- You will be able to recognize emerging trends and issues.
This Live Webinar Covers These Hot Issues:
An Overview of SOC Report Types
- SOC 1 – Type I and Type II
- SOC 2 – Type I and Type II
- SOC 3 – Worth It or Not
Key Items to Review in SOC Reports
- Management's Assertion
- Control Description
- User Control Considerations
- Subservice Organization Complementary Controls
- Information Provided by Independent Auditor
Emerging Trends and Issues
Credit Information (Sponsored by Lorman Education Services):
- CLE
- CPE
- AIPB
- NASBA
- EnrolledAgents
For Detailed Credit Information page click here
Only registered attendee will receive continuing education credit.
Instructor Profile:
Robert Coro, CPA, CISA, CISM, PCI-QSA, Marcum LLP
- Information Technology Audit senior manager in the firm’s New Haven office and a member of its IT Risk & Assurance Services Practice group
- Extensive experience with SSAE 16/SSAE 18, internal and external audits, and specialized projects for application reviews
- Conducts in-depth analyses of entire business systems including application software, databases, operating systems, hardware, client/server networks and communicates with technical staff and managers to improve internal controls
- Conducts IT risk assessments and valuates information security strategies
- Works with Fortune 500 companies
- Creates standards, policies and procedures for compliance with Sarbanes-Oxley Act 404 and manages SSAE 16/SSAE 18, Pre-Assessments, Type I and Type II audits and draft reports for review
- Member of Information Systems Auditing and Control Association (ISACA), Massachusetts Society of Certified Public Accountants (MSCPA) and New Hampshire Society of Certified Public Accounts (NHSCPA)
- Certified information systems auditor, certified information systems manager, Certified Public Accountant, Payment Card Industry Qualified Security Assesor
- B.S.B.A. degree, Salem State College
- Can be contacted at 203-781-9705 or Robert.coro@marcumllp.com