Your Data Center’s SAS 70/SSAE 16 Report is Not Enough
Recently, my business partner and I attended a national accounting industry conference with quite a few Software-as-a-Service (SaaS) providers exhibiting their services. For curiosity’s sake and since we are always looking for good clients, we asked them if they had a SAS 70 or SSAE 16 report. The initial answers were straight forward enough though after more questioning the answers were...
Read MoreSAS 70/SSAE 16 vs FISAP vs ISO 27002
Frequently there is a discussion from service organizations regarding which of these an organization should complete. Many service organizations get a significant amount of requests related to information technology controls and security. The requests come in different forms, whether it be for SAS 70 reports (changing to SSAE 16 reports after June 15, 2011), completed questionnaires, and...
Read MoreQualified Opinions
What is a qualified opinion and what does it mean? A qualified opinion means that either the internal controls were not designed (Type I or II) or operating (Type II only) effectively for one or more control objectives. Qualified opinions (also known as “dirty opinions” in audit jargon) are actually quite common. Most service organizations that have received a qualified opinion received...
Read MoreAbout Linford & Company
We are specialists in the performance of SSAE 16/SOC 1, SOC 2, and royalty audits across technical disciplines. We issue SSAE 16/SOC 1 and SOC 2 reports for a wide variety of service organizations that go to many of the largest user organizations in the world. We also perform royalty audits on some of the largest consumer brands in the world.
 |
Follow us on our blog where we provide information about our firm, insight on guidance relevant to our services. |
 |
Subscribe to our newsletter. |