AICPA Guides are developed and updated to provide guidance and discussions specific to current industry developments and trends. This guide Reporting on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality, or Privacy (SOC 2SM) provides "how-to" guidance for service auditors performing examinations under AT section 101, Attest Engagements (AICPA, Professional Standards), to report on a service organization's controls over its system relevant to security, availability, processing integrity, confidentiality, or privacy, commonly referred to as aservice organization controls (SOC) 2 engagement.
Updated as of March 1, 2012, the guide includes relevant guidance contained in applicable standards and other technical sources. It explains the relationship between a service organization and its user entities, provides examples of service organizations including those that provide cloud computing services, identifies the criteria in Trust Service Principles and Criteria as the criteria to be used to evaluate the design and operating effectiveness of controls, explains the difference between a type 1 and type 2 SOC 2SM report and provides an overview of the three reporting options for CPAs reporting on controls at a service organization.
This guide update includes a new comprehensive illustrative type 2 SOC 2 report which contains all of the components of a type 2 SOC 2 report. In addition, it includes expanded information on unique challenges and risks service auditor will encounter in performing SOC 2 or SOC 3SM engagements for cloud computing service organizations.
"synopsis" may belong to another edition of this title.
Book Description AICPA, 2012. Paperback. Book Condition: Good. Item may show signs of shelf wear. Pages may include limited notes and highlighting. Includes supplemental or companion materials if applicable. Access codes may or may not work. Connecting readers since 1972. Customer service is our top priority. Bookseller Inventory # mon0001224393
Book Description AICPA, 2012. Book Condition: Good. A+ Customer service! Satisfaction Guaranteed! Book is in Used-Good condition. Pages and cover are clean and intact. Used items may not include supplementary materials such as CDs or access codes. May show signs of minor shelf wear and contain limited notes and highlighting. Bookseller Inventory # 1937350606-2-4