Audits of "SOC" (System and Organization Controls) have been governed starting on May 1, 2017 by the application of "SSAE" (Statement of Standards for Attestation Engagements) 18. This new AICPA Standard replaces SSAE 16, just as SSAE 16 replaced SAS 70. This new standard will require the users of these reports to change their compliance programs to fit the new reporting standards. SSAE 18 is more comprehensive than the prior standards. Learn...

"How can we implement a holistic approach to cybersecurity?" "What methodologies, policies, technologies, and specific tools can we deploy to prevent, detect and monitor cybersecurity threats"? "How can we build a more effective program?" As more data breaches are disclosed, cybersecurity is at the forefront of Boards, executives, employees and consumers. Breaches are a continuing threat to an organization's reputation through the disclosure o...

New cybersecurity risk regulations for all organizations are approaching faster than you might think. "Computers, software, programming and algorithms are all parts of a cybersecurity risk program, but it is the interaction with the "humans" that makes all the difference in the world." An effective cybersecurity risk program requires an organization to have everything from program policies to incident response plans to specific breach notifica...

Learn the best practices for Information Technology governance, management, security, control and auditing under COBIT and COSO 2013. This is a one-day CPE seminar designed to provide an understanding of an effective program for the creation of a system of internal control within Information Technology (IT). We use the COBIT framework as our basis for the control groups and assessment is under COSO 2013. It was created to allow organizations t...

New cybersecurity risk regulations for all organizations are approaching faster than you might think. "Computers, software, programming and algorithms are all parts of a cybersecurity risk program, but it is the interaction with the "humans" that makes all the difference in the world." An effective cybersecurity risk program requires an organization to have everything from program policies to incident response plans to specific breach notifica...