Internal Audit Checklist | IT Department | i-CORE Technologies

Assurance

Quick links

Assurance ASSURANCE SOC 1 / SSAE 16 / SSAE 18 REPORT

Type 1 - This report is on the fairness for a representation of the appropriateness of the controls design and the management description of the service organisation system at a set point of time.

Type 2 - Identical to type 1 except covering the operating effectiveness for controls. Reports are only accessible by service organization’s management, user auditor and user entities for the organization.

AGREED-UPON PROCEDURES

Here, we are requested by a client to provide a report on findings related to specific procedures for a particular subject. Findings are derived independently, so we perform procedures and then offer reports on findings.

Procedures are agreed on by the parties and the specified parties decide whether they are appropriate. No examination or review is performed and we do not provide negative assurance or an opinion. Instead we deliver an “Independent Accountant’s Report on Applying Agreed-Upon Procedures.”

SOC 2 REPORT SOC 2 Report

A full report on service organisation controls related to processing integrity, security, availability, and confidentiality. This report is also suitable for private service organisations including medical record management providers and data center hosting providers.

The services in question could affect processing integrity, availability and security of service organisation systems necessary to process user data. Privacy and confidentiality of the information transferred through systems could be necessary to give assurance independently to management or anybody responsible for governing user entities.

Abiding by AICPA guidelines, the SOC 2 examination solution we provide offer independent assurance in key areas including processing, integrity, availability and security.

We can provide and issue a Type 1 or a Type 2 report.

ASSURANCE PCI DSS ASSESSMENT

This audit provides the validation of compliance for the Payment Card Industry Data Security Standard. It is necessary for acquiring banks and payment cards. Our employees satisfy all QSA requirements.