Service Organization Controls
Provides support to prepare organizations to get ready for SOC and ISAE certifications and also perform attest services. The reports from ISAE or SOC examinations are the best way for the service organizations to demonstrate solid business, finance and IT practices with appropriate checks and balances. With increased risks pertaining to outsourcing, many of the international customers request the examination reports on an annual basis and more so mandatory to qualify as vendors for IT / BPO services.
ISAE 3402
The ISAE 3402 audit engagement is conducted as per the international standards guidance rules. The ISAE 3402 audit report provides the assurance that the service business is maintaining effective and efficient internal controls related to financial, information, or security reporting. ISAE 3402 is similar to a SOC 1 SSAE 16 audit as conducted for US based entities.
IT & CYBERSECURITY ASSURANCE
- IT General controls testing
- Network security management controls
- Firewall review
- Vulnerability assessments
- Penetration testing
- Cybersecurity gap analysis
- ISO 27001 ISMS controls