Why? Because, depending on the auditor you use, you may get controls that are not suited to your business model, and more importantly, unimportant to your customers. You may also get an auditor that is really good at accounting but has little knowledge about managed services specific technologies, processes, and service delivery characteristics. Getting a SOC 1 audit report that is based on standards specific to cloud computing and manage service is crucial to providing your customers with the assurance they require.
Our team of trained and experienced global auditors can leverage the MSP/Cloud Verify to significantly :
a) decrease the engagement time
b) maintain out-of-control costs
c) apply controls relevant to your business model
The American Institute of Certified Public Accountants (AICPA) and the International Auditing and Assurance Standards Board (IAASB) recently issued new guidelines for an auditor’s report on the controls of a service organization, commonly referred to as a “SAS 70” report. Beginning with reporting periods ending on or after June 15, 2011, reports on controls at those service organizations will be performed in accordance with one of the following new standards:
– Statement on Standards for Attestation Engagements No. 18 (SSAE 18) – Reporting on Controls at a Service Organization, or
– International Standards on Attestation Engagements No. 3402 (ISAE 3402) – Assurance Reports on Controls at a Service Organization.