Jennifer I. Village, Director of Risk Assurance, PricewaterhouseCoopers
In 2010, the AICPA issued SSAE No. 16, Reporting on Controls at a Service Organization, which replaced SAS 70. Most organizations outsource certain tasks and functions to at least one service organization. Therefore, many risks of the service organization become risks of the user entity. SSAE 16 reports are intended to provide an objective evaluation of the effectiveness of controls at the service organization. Join us to discuss:
* Why the change to SSAE16
* Similarities & Differences between SAS70 & SSAE16
* Impacts of the change to Internal Audit Organizations
* Common pitfalls / value adds / best practices
* Broad Standards (SSAE 16, SOC, AT101) and how they relate