About CounterStrike CounterStrike Electronic Security
CounterStrike Home PageContact CounterStrikeAudit and ComplianceComputer Network SecurityInvestigations and IntelligenceTechnical Security Countermeasures

Statement on Standards for
Attestation Engagements
(SSAE) 16

In April 2010, the American Institute of Certified Public Accountants (AICPA) published a new Attestation Standard, SSAE No. 16, to supersede the existing guidance (SAS 70) for performing an examination of a service organization's controls and processes.

The auditor's consideration of an entity's internal control and the impact a service organization may have on the entity's control environment has long been an area of focus in designing an acceptable audit approach. SSAE 16 includes a number of improvements in the examination of service providers which will benefit CIO's and customers of

IT service companies who found the SAS 70 Type II audit reports lacking.

SSAE 16 is to be used when an entity outsources "a business task or function and the data resulting from that task of function is incorporated in the (customer's) financial statements." This creates broad applicability to a significant number of service providers from payroll providers, data center collocation providers, IT outsourcing and managed services companies, managed hosting providers, and an ever increasing array of cloud services providers regardless of whether they are Infrastructure as a Service ("IaaS"), Platform as a Service ("PaaS") or Software as a Service ("SaaS").

CounterStrike qualified auditors, all of which have 'big four' audit experience, can either perform Type 1 (only covers the design effectiveness of internal controls) or Type 2 (covers design as well as the operating effectiveness of internal controls over a minimum reporting period of six months) audits and provide credible and well-written reports.

When you know you are ready for a SSAE 16 audit and you would like to combine this with a PCI DSS audit for best efficiency and lower costs, be sure to contact CounterStrike.


Home  |   About Us  |   Contact Us  |   Site Map
Audit & Compliance  |   Computer Network Security  |   Investigations & Intelligence  |   Technical Security Countermeasures
BSA / AML  |   e Discovery Forensics  |   FISMA  |   HIPAA / HITECH Act  |   ISO 27000  |   PCI DSS  |   SSAE 16  |   TR-39  |   FedRAMP

Contact Us: Telephone 307-432-1092  |  E-mail: help@counterstrike.com
Copyright © 1999-, CounterStrike. All rights reserved.