The business of technology is typically about innovation and increasing productivity. But like any industry, it’s also about sound management practices and operating controls – and certifying proper compliance with such practices. The accounting standards governing third-party “service organizations” were established by the American Institute of Certified Public Accountants (“AICPA”). SAS 70 and SSAE 16 offer a consistent framework for assessing service organizations’ financial and operational controls.
Understanding SAS 70 and SSAE 16, the risks associated with noncompliance and why these standards matters to insurance professionals is the subject of our latest whitepaper, titled “SAS 70 & SSAE 16: A Primer on Changes to Service Organizations Audit Standards.” Authored by Technology Risk Control Specialist Jack Fletcher, these insights will enable you to understand these AICPA standards and ultimately better assess the exposures and controls within those service organizations you may represent or that provide services to your clients.
To view our complete technology risk management whitepapers, visit our dedicated technology insurance website: www.onebeacontech.com.