Skip to main content
NEWS
Tips for good ISAE 3402
ISAE 3402 | SOC1
Tips for good ISAE 3402

In principle, the ISAE 3402 statement focuses on the processes underlying the financial statements, as it is mainly used by accountants. Therefore, ensure that you have a scope that is sufficiently extensive for the users.

Enterprise Risk Management
Standards
Enterprise Risk Management

If an organization wants to achieve its objectives, it must deal with risks that threaten these objectives and must manage these risks. COSO has defined the various elements of an internal control system for this.

Cyberssecurity vs SOC 2
Security
SOC for Cybersecurity vs SOC 2

Organizations increasingly outsource processes or data to service providers. Processes that have no relation to financial processes are relevant for SOC 2 reporting. A SOC 2 report is an internal control report that focuses on controls at a service provider relevant to Security, Availability, Processing Integrity, and privacy. A SOC 2 report ensures that a service organization keeps data private and secure while processing, and that data is accessible at any time.  

Cyber threats
Security
Cyber threats

Globally, the cyber threat continues to evolve at a rapid pace, with an increasing number of data breaches every year. Already in the first nine months of 2019, the shocking number of 7.9 billion data records had become public as a result of data breaches.

Penetration testing
Standards
Penetration testing benefits

Your organization does not want to have business-critical information out in the open. After all, being hacked can be disastrous for your organization. To make sure you have your digital security in order, a penetration test is a must

HLS
Standards
Benefits High Level Structure

There is often talk about HLS (High Level Structure) in ISO standards. But what does this mean? What are the conditions that you must meet as a company and what are the advantages for the ISO standards?