“Myers and Stauffer can assess whether contracted service providers are protecting the confidentiality, integrity and availability of your data and systems.”

SSSAE 16 AND SERVICE ORGANIZATION CONTROLS AUDITS CAN HELP ANSWER THE QUESTION, “ARE SERVICE PROVIDERS ADEQUATELY PROTECTING YOUR SYSTEMS AND DATA?”

Data breaches, system processing errors, and system failures have increased exponentially in recent years. Internal and external threats are also becoming more numerous, aggressive, and sophisticated, and are targeting more types of sensitive information. There is no quicker way to become a front-page story in the newspaper than to have a data breach. In addition, if protected health information is involved, the penalties can be severe. If you have out-sourced the management of your systems and processing of your data to a service provider, how do you know they are adequately protecting the confidentiality, integrity and availability of your systems and data?

Myers and Stauffer can help answer this question by performing an assessment using the American Institute of Certified Public Accountants Statement on Standards for Attestation No. 16 (SSAE 16) and Service Organization Controls (SOC) audit methodology.

Recognized in the financial services and public sectors, as well as other industries where data security and integrity is critical, SOC audits – and in particular the SOC 1 also known as the SSAE 16 audit - have become essential assessments for service providers throughout the world. A SOC audit provides:

  • Valuable information regarding the service organization's controls and the effectiveness of those controls.
  • A detailed description of the service organization's controls.
  • An independent assessment of whether the controls were placed in operation, suitably designed, and operating effectively.

Providing the report from a SOC audit, like the SOC1/SSAE16 audit, to your organization’s financial auditors will also greatly assist the financial auditors in planning the audit of the financial statements and will help you avoid the additional costs and disruptions of sending their auditors to the service organization to perform their procedures.

Myers and Stauffer’s can apply our proven approach and experience to performing SOC audits to your organization’s needs.

CONTACT

Ron Franke, CISA, CRISC, CIA, CICA, CFE

Principal

11044 Research Blvd.
Suite C-500
Austin, TX 78759

PH 512.340.7412
PH 512.342.0800
MOBILE 512.415.3465
rfranke@mslc.com