Data breaches, system processing errors, and system failures have increased exponentially in recent years. Internal and external threats are also becoming more numerous, aggressive, and sophisticated, and are targeting more types of sensitive information. There is no quicker way to become a front-page story in the newspaper than to have a data breach. In addition, if protected health information is involved, the penalties can be severe. If you have out-sourced the management of your systems and processing of your data to a service provider, how do you know they are adequately protecting the confidentiality, integrity and availability of your systems and data?
Myers and Stauffer can help answer this question by performing an assessment using the American Institute of Certified Public Accountants Statement on Standards for Attestation No. 16 (SSAE 16) and Service Organization Controls (SOC) audit methodology.
Recognized in the financial services and public sectors, as well as other industries where data security and integrity is critical, SOC audits – and in particular the SOC 1 also known as the SSAE 16 audit - have become essential assessments for service providers throughout the world. A SOC audit provides:
Providing the report from a SOC audit, like the SOC1/SSAE16 audit, to your organization’s financial auditors will also greatly assist the financial auditors in planning the audit of the financial statements and will help you avoid the additional costs and disruptions of sending their auditors to the service organization to perform their procedures.
Myers and Stauffer’s can apply our proven approach and experience to performing SOC audits to your organization’s needs.