SSAE 18 SOC Audits: Auditee - Auditor - Assessor Training - In-Person
Welcome to our dedicated page for the SSAE 18 SOC Audits: Auditee, Auditor, and Assessor Training CPE event. In a world where trust is not just valued but essential, we understand the importance of conducting audits that not only meet but exceed standards. This SSAE 18 CPE training is designed for you - whether you're on the front lines as an auditee, guiding the process as an auditor, or ensuring compliance as an assessor.
At the heart of this SSAE 18 CPE course is a commitment to authenticity. We aim to present a genuine voice that not only speaks to you but also speaks for you. Through transparency, sincerity, and a deep understanding of your needs, we strive to build a connection that goes beyond the conventional teacher-student dynamic. This training is about creating a community where each member feels seen, heard, and empowered.
Course Overview
Our SSAE 18 SOC Audits training is meticulously crafted to provide comprehensive insights into the auditing process under the SSAE 18 guidelines. Spanning three days, this in-depth course is structured to enhance your understanding, skills, and confidence in either preparing for, conducting, or assessing SOC audits under SSAE 18.
Who Should Attend
This course is tailor-made for a diverse audience, including:
- Auditees who are responsible for preparing their organization for a SOC audit under SSAE 18.
- Auditors who wish to refine their skills in conducting thorough and effective SOC audits.
- Assessors looking to deepen their understanding of the SSAE 18 standards to ensure compliance and quality in audit processes.
Whether you're new to the world of SSAE 18 audits or seeking to strengthen your existing knowledge, this training offers valuable insights and practical skills that can be applied in real-world scenarios.
What You Will Learn
- The foundational principles of SSAE 18 and the SOC audits under the auditing standard, providing a solid base for understanding the standards and requirements.
- Practical guidance on preparing for a SSAE 18 audit, including the documentation and processes involved.
- Techniques and strategies for conducting efficient and effective SSAE 18 audits, focusing on critical areas of assessment and evaluation.
- Insight into the role of an assessor, including how to review and evaluate audit findings to ensure compliance and quality.
Why Choose This Training
In choosing this training, you're not just signing up for another course. You're making a commitment to excellence. Our approach is rooted in authenticity, aiming to provide a learning experience that is both enriching and genuinely helpful. We believe in the power of understanding – not just teaching – because true insight comes from a place of sincerity and connection.
Join us for this transformative SSAE 18 SOC audits training and take a significant step forward in your professional journey. Let's navigate the complexities of SSAE 18 audits together, with transparency, expertise, and a shared goal of achieving and maintaining the highest standards of trust and compliance.
We look forward to welcoming you to our community and embarking on this journey of growth and learning together.
Details on Event Presentation
The sessions will be as follows:
Monday – 9:00 a.m. to 5:00 p.m.
Tuesday - 9:00 a.m. to 5:00 p.m.
Wednesday - 9:00 a.m. to 4:00 p.m.
Offered in-person in various cites each month on Monday-Wednesdays in sessions.
We can schedule private events on your timetable for two or more attendees. Bring this event to your audit team now!
NASBA Program Disclosure
Program Level of Understanding: Basic
Prerequisites: None
Advance Preparation: None
Delivery Format: Group Internet Based
NASBA Field(s) of Study: Auditing, Information Technology
CPE Credits: 24 based on 50 minutes of instruction per hourCPE Event Highlights
Fundamental changes have come to Service Organization Control (SOC) reports in the last ten years. In 2011, SAS 70 was superseded by the SSAE 16, and then in May 2017, SSAE 18 become effective.
This move to Statement of Auditing Engagements (SSAE 18) brings along with it significant updates which strengthen the overall quality of the SSAE 18 SOC reports under this auditing standard.
You will learn about the SSAE 18 framework in this event. Known as Service Organization Control (SOC) reports, the SOC framework is a radical departure from the one-size-fits-all approach held by SAS 70 for approximately twenty (20) years.
In short, with three SSAE 18reporting options - SOC 1, SOC 2, and SOC 3 - service organizations have more flexibility and more choices regarding third-party assessments of their control environments. While SOC 1 has quickly become the dominant reporting option, SOC 2 and SOC 3 are extremely viable, especially for many of today's technology companies.
Learning Objectives
Attendees will understand:
- Internal control and risk management frameworks
- the AICPA standard for System and Organization Control audits (SSAE 18 SOC)
- the various types of SOC audits and their applicability
- the requirements to prepare for SOC engagements
- how SOC 1, SOC 2, and SOC 3 audits are conducted
- how to interpret the SOC reports
- the identification and testing of internal controls in SOC reports
- the responsibilities for user entities and testing of user controls
- how to document the tests of controls
- common SOC audit internal control deficiencies
- how auditors form their SOC audit opinion
- the new types of SOC reports
- the role of SOC audits in Vendor Management Programs
Key Issues on the Agenda
Section 1 - Introduction and Overview of SSAE 18
Section 2 - Types of SSAE 18 Audits
Section 3 - Components of the Audit Report
Section 4 - Sample Reports
Section 5 - SOX, COSO and SSAE 18
Section 6 - The SSAE 18 Data Center Audit
Section 7 - How to Conduct the SSAE 18 Audit
Section 8 - Developing the System Description
Section 9 - Summary of Concepts
Section 10 - Testing of Controls
Section 11 - IT Control Frameworks
Section 12 - Testing the Physical Security Controls
Section 13 - Testing the Logical Security Controls
Section 14 - Testing the Changes Controls
Section 15 - Testing Operations, Backup and Restoration Controls
Section 16 - Testing the IPO and User Controls
Section 17 - Evaluating the SSAE 18 Report
Section 18 - Going Forward with Your Vendor Management ProgramSummary of the Subject Matter
This CPE event focusing on SSAE 18 SOC Audits offers comprehensive training for auditees, auditors, and assessors involved in System and Organization Controls (SOC) audits conducted in accordance with the Statement on Standards for Attestation Engagements (SSAE 18). This in-person training event is designed to equip participants with the knowledge, skills, and best practices essential for navigating the intricacies of SSAE 18 SOC audits, thereby fostering a thorough understanding of the roles, responsibilities, and requirements inherent to the audit process.
Key focus areas covered in this event may include:
-
Regulatory Framework and SSAE 18 SOC Compliance: An exploration of the regulatory framework and compliance requirements outlined by the SSAE 18 pertaining to SOC audits, shedding light on the attestation standards and reporting considerations essential to conducting effective and compliant audits.
-
Auditee Preparation and Responsibilities: Insights into the preparatory measures, documentation requirements, and responsibilities incumbent upon auditees undergoing SSAE 18 SOC audits, emphasizing the significance of accurate, transparent, and comprehensive representations of their control environments.
-
Auditor Methodologies and Examination Techniques: Comprehensive guidance on the methodologies, examination procedures, and assessment techniques employed by auditors and assessors during SSAE 18 SOC audits, empowering participants with the tools necessary to execute thorough, insightful, and value-driven audit engagements.
-
Assessor Training and Professional Development: A focus on the training and professional development opportunities available for individuals seeking to enhance their skill set as assessors within the realm of SSAE 18 SOC audits, fostering continuous learning, competence, and proficiency in audit practices.
By addressing these critical components, the in-person training event aims to fortify the competencies of auditees, auditors, and assessors, ultimately contributing to the delivery of robust, reliable, and value-adding SSAE 18 SOC audit engagements in alignment with regulatory mandates.
-
Authoritative Sources
After attending the CPE event on SSAE 18 Audits: Auditee - Auditor - Assessor Training, you can continue to expand your knowledge and expertise by exploring additional resources from authoritative sources in the field of auditing and compliance. These sources provide valuable insights and in-depth content to further enhance your understanding in this domain:
- American Institute of Certified Public Accountants (AICPA)
- The AICPA offers a wealth of resources, including technical guides, research reports, and news updates related to auditing standards, SSAE 18 SOC audits, and compliance practices.
- The Institute of Internal Auditors (IIA)
- The IIA provides extensive resources, publications, and educational materials focused on internal audit practices, including guidance on SSAE 18 SOC audits and related industry standards.
By leveraging these authoritative sources, you can deepen your knowledge, stay updated on industry best practices, and continue your professional development in the realm of SSAE 18 SOC audits and compliance practices.
- American Institute of Certified Public Accountants (AICPA)