SSAE 18 SOC Audits: Auditee - Auditor - Assessor Training - In-Person
Gain Advanced Knowledge and Tools to Excel in SSAE 18 SOC Audits
The SSAE 18 SOC Audits - Auditee, Auditor, Assessor Training is a distinctive three-day event meticulously designed for professionals involved in System and Organization Control (SOC) audits. Tailored to meet the needs of auditees, auditors, and assessors, this live training provides the insights and skills necessary to handle complex SSAE 18 audits with confidence and precision.
Earn 24 NASBA-approved CPE credits while mastering SOC audit requirements, SSAE 18 compliance standards, and key methodologies that ensure quality audit engagements.
Why Attend?
Earn 24 CPE Credits - Enhance your career by gaining invaluable credentials while sharpening your auditing expertise.
Build Expertise Across SSAE 18 Standards - Understand the intricacies of SOC 1, SOC 2, and SOC 3 audits and how to effectively conduct or assess these engagements.
Strengthen Vendor Management Programs - Equip yourself with essential strategies to manage vendor risks through SSAE 18-compliant frameworks.
Collaborate with Industry Experts - Learn from seasoned professionals with hands-on experience in conducting and assessing SOC audits under SSAE 18.
What You’ll Learn
This comprehensive training offers valuable skills to ensure effective SOC engagements, including key learning objectives like:
Foundational Knowledge of SSAE 18 Standards - Learn the principles underpinning SSAE 18 compliance and its critical transition from SAS 70 to SSAE 18.
Preparing for SOC Audits - Gain practical guidance on auditee preparation, documentation requirements, and creating internal control narratives.
Conducting SOC Audits - Explore best practices for auditors, including methodologies that address common challenges across SOC engagements.
Interpreting and Evaluating Audit Findings - Develop expertise in reviewing SOC reports to ensure alignment with compliance standards and identifying control deficiencies.
Focus on Vendor Risk Management - Understand how SOC audits play a pivotal role in validating vendor management programs and safeguarding organizational integrity.
Training Highlights
This course ensures a deep understanding of SOC audit processes and presents actionable steps to enhance performance. Highlights include:
Interactive Learning Environment - Engage in practical exercises, group discussions, and case studies that bring theoretical knowledge to life.
Expert-Led Instruction - Gain insights from experienced auditors and assessors who specialize in SSAE 18 SOC reporting.
Real-World Applications - Apply frameworks, tools, and strategies to real-world SOC audit scenarios for immediate impact in your role.
Key Agenda Topics
This training program covers various aspects of SSAE 18 audits, structured to maximize learning and practical application. Key agenda topics include:
Overview of SSAE 18 Standards - Understand the evolution from SAS 70 to SSAE 18 and the unique attributes of SOC 1, SOC 2, and SOC 3 reports.
Components of SOC Audits - Explore audit reporting sections, including system descriptions, controls tests, and third-party reliance considerations.
Developing Effective System Descriptions - Learn how to draft compelling system descriptions that meet SOC report standards.
Conducting and Documenting Tests of Controls - Gain insights into testing key controls, physical and logical security, and vendor management practices.
Evaluating Audit Findings and Opinions - Understand the process for assessing control deficiencies, forming opinions, and building recommendations.
Vendor Management Program Integration - Learn how SSAE 18 audit findings can enhance vendor management and risk assessment measures.
Role of Related Frameworks - Examine how COSO, SOX, and IT control frameworks align with SOC audit principles.
Future of SOC Audits - Prepare for advancements in SOC auditing and maintain compliance in evolving regulatory landscapes.
Event Details
- Format: Live, in-person training led by industry professionals.
- Schedule:
- Day 1 (Monday): 9 am – 5 pm
- Day 2 (Tuesday): 9 am – 5 pm
- Day 3 (Wednesday): 9 am – 4 pm
- CPE Credits: 24 credit hours upon completion.
- Cost: $2,160 per attendee.
- Location: Held in major cities across the U.S., with monthly session availability.
- Prerequisites: None – open to participants at all levels seeking to advance their SSAE 18 knowledge.
Who Should Attend?
This program is perfect for professionals involved in SSAE 18 SOC engagements, including the following roles:
- Auditees looking to ensure their organization meets SOC audit standards effectively.
- Auditors aiming to elevate their expertise in SOC report preparation and execution.
- Assessors focusing on aligning audits with organizational compliance and risk management goals.
- Compliance Officers and Risk Managers integrating SSAE 18 principles into vendor management and IT frameworks.
Why SSAE 18 Mastery Matters
The benefits of solid SOC audits extend beyond regulatory compliance. By understanding SSAE 18 standards, organizations ensure operational excellence, foster trust, and mitigate risks that could otherwise impact financial statements or business relationships. This training empowers professionals to lead with confidence in this critical area.
Register Today
Don’t miss your chance to master SSAE 18 audits and earn 24 CPE credits. Join our SSAE 18 SOC Audits - Auditee, Auditor, Assessor Training event to gain the expertise and practical tools necessary to excel in SOC engagements.
Register now to secure your spot and enhance your professional capabilities in audit and compliance!
Details on Event Presentation
The sessions will be as follows:
Monday – 9:00 a.m. to 5:00 p.m.
Tuesday - 9:00 a.m. to 5:00 p.m.
Wednesday - 9:00 a.m. to 4:00 p.m.
Offered in-person in various cites each month on Monday-Wednesdays in sessions.
We can schedule private events on your timetable for two or more attendees. Bring this event to your audit team now!
NASBA Program Disclosure
Program Level of Understanding: Basic
Prerequisites: None
Advance Preparation: None
Delivery Format: Group Internet Based
NASBA Field(s) of Study: Auditing, Information Technology
CPE Credits: 24 based on 50 minutes of instruction per hourCPE Event Highlights
Fundamental changes have come to Service Organization Control (SOC) reports in the last ten years. In 2011, SAS 70 was superseded by the SSAE 16, and then in May 2017, SSAE 18 become effective.
This move to Statement of Auditing Engagements (SSAE 18) brings along with it significant updates which strengthen the overall quality of the SSAE 18 SOC reports under this auditing standard.
You will learn about the SSAE 18 framework in this event. Known as Service Organization Control (SOC) reports, the SOC framework is a radical departure from the one-size-fits-all approach held by SAS 70 for approximately twenty (20) years.
In short, with three SSAE 18reporting options - SOC 1, SOC 2, and SOC 3 - service organizations have more flexibility and more choices regarding third-party assessments of their control environments. While SOC 1 has quickly become the dominant reporting option, SOC 2 and SOC 3 are extremely viable, especially for many of today's technology companies.
Learning Objectives
Attendees will understand:
- Internal control and risk management frameworks
- the AICPA standard for System and Organization Control audits (SSAE 18 SOC)
- the various types of SOC audits and their applicability
- the requirements to prepare for SOC engagements
- how SOC 1, SOC 2, and SOC 3 audits are conducted
- how to interpret the SOC reports
- the identification and testing of internal controls in SOC reports
- the responsibilities for user entities and testing of user controls
- how to document the tests of controls
- common SOC audit internal control deficiencies
- how auditors form their SOC audit opinion
- the new types of SOC reports
- the role of SOC audits in Vendor Management Programs
Key Issues on the Agenda
Section 1 - Introduction and Overview of SSAE 18
Section 2 - Types of SSAE 18 Audits
Section 3 - Components of the Audit Report
Section 4 - Sample Reports
Section 5 - SOX, COSO and SSAE 18
Section 6 - The SSAE 18 Data Center Audit
Section 7 - How to Conduct the SSAE 18 Audit
Section 8 - Developing the System Description
Section 9 - Summary of Concepts
Section 10 - Testing of Controls
Section 11 - IT Control Frameworks
Section 12 - Testing the Physical Security Controls
Section 13 - Testing the Logical Security Controls
Section 14 - Testing the Changes Controls
Section 15 - Testing Operations, Backup and Restoration Controls
Section 16 - Testing the IPO and User Controls
Section 17 - Evaluating the SSAE 18 Report
Section 18 - Going Forward with Your Vendor Management ProgramSummary of the Subject Matter
This CPE event focusing on SSAE 18 SOC Audits offers comprehensive training for auditees, auditors, and assessors involved in System and Organization Controls (SOC) audits conducted in accordance with the Statement on Standards for Attestation Engagements (SSAE 18). This in-person training event is designed to equip participants with the knowledge, skills, and best practices essential for navigating the intricacies of SSAE 18 SOC audits, thereby fostering a thorough understanding of the roles, responsibilities, and requirements inherent to the audit process.
Key focus areas covered in this event may include:
-
Regulatory Framework and SSAE 18 SOC Compliance: An exploration of the regulatory framework and compliance requirements outlined by the SSAE 18 pertaining to SOC audits, shedding light on the attestation standards and reporting considerations essential to conducting effective and compliant audits.
-
Auditee Preparation and Responsibilities: Insights into the preparatory measures, documentation requirements, and responsibilities incumbent upon auditees undergoing SSAE 18 SOC audits, emphasizing the significance of accurate, transparent, and comprehensive representations of their control environments.
-
Auditor Methodologies and Examination Techniques: Comprehensive guidance on the methodologies, examination procedures, and assessment techniques employed by auditors and assessors during SSAE 18 SOC audits, empowering participants with the tools necessary to execute thorough, insightful, and value-driven audit engagements.
-
Assessor Training and Professional Development: A focus on the training and professional development opportunities available for individuals seeking to enhance their skill set as assessors within the realm of SSAE 18 SOC audits, fostering continuous learning, competence, and proficiency in audit practices.
By addressing these critical components, the in-person training event aims to fortify the competencies of auditees, auditors, and assessors, ultimately contributing to the delivery of robust, reliable, and value-adding SSAE 18 SOC audit engagements in alignment with regulatory mandates.
-
Authoritative Sources
After attending the CPE event on SSAE 18 Audits: Auditee - Auditor - Assessor Training, you can continue to expand your knowledge and expertise by exploring additional resources from authoritative sources in the field of auditing and compliance. These sources provide valuable insights and in-depth content to further enhance your understanding in this domain:
- American Institute of Certified Public Accountants (AICPA)
- The AICPA offers a wealth of resources, including technical guides, research reports, and news updates related to auditing standards, SSAE 18 SOC audits, and compliance practices.
- The Institute of Internal Auditors (IIA)
- The IIA provides extensive resources, publications, and educational materials focused on internal audit practices, including guidance on SSAE 18 SOC audits and related industry standards.
By leveraging these authoritative sources, you can deepen your knowledge, stay updated on industry best practices, and continue your professional development in the realm of SSAE 18 SOC audits and compliance practices.
- American Institute of Certified Public Accountants (AICPA)