Internal Control Focused Events
SSAE SOC Audits: Auditee - Auditor - Assessor Training - 20 CPEs
Offered periodically on Monday-Friday in 2021
Find Next Event Now
Audits of "SOC" (System and Organization Control) have been in effect since May 1, 2017 through the implementation of AICPA Statement on Standards for Attestation Engagements (SSAE) 18. This standard replaced SSAE 16, just as SSAE 16 replaced SAS 70, and SAS 70 replaced SAS 44. This SOC audit standard requires the users of SOC audit reports to adjust their compliance programs to fit the SSAE 18 SOC standard. SSAE 18 is more comprehensive than the prior SOC standards.
Learn the best practices for preparing, conducting and assessing SSAE 18 SOC audit reports from our highly experienced instructor who performs these activities.
This program examines the details of the SOC audit process.from planning to performing to documenting to reporting.
This valuable five-morning virtual CPE event is designed to evaluate SSAE 18 SOC requirements from all three viewpoints:
- The Service Organization,
- The External Auditor,
- The Report User.
The materials provide a detailed understanding of an effective program for creating and assessing a system of internal control within an outsourced IT service organization under SSAE 18. It also provides the Report User with insight for interpreting the report and documenting the report review given their user requirements.
We provide guidance for Service Organizations on typical SOC controls and procedures. The event covers guidance for external auditors to allow them and document SOC workpapers and audit reports.
This program will help your organization develop, assess and maintain an effective SSAE 18 SOC program within a Vendor Management Program to comply with the Sarbanes-Oxley Act (SOX) Section 404, similar regulations (HIPAA, GLBA, etc.) and best practices (COBIT, NIST 800, ITIL, etc.).
Our attendees will learn a top-down, risk-based approach to SSAE 18 SOC compliance. The presentation includes:
- Assessing Organizational Objectives.SOC 1, SOC 2, SOC 3, and the SOC Types
- Selecting SOC 1 Control Objectives and Controls
- Selecting SOC 2 Trust Service Criteria (TSCs) and Controls
- Creating a Service Organization Risk Assessment
- Evaluating Client Requirements
- Determining Regulatory Implications
- Developing Service Delivery Proposals
- Creating, Communicating, and Auditing Policies and Procedures
- Managing Vendors and Subservice Organizations
- Maintaining Physical Access Controls
- Maintaining Logical Security Controls
- Maintaining Change Controls
- Maintaining Backup and Restoration Controls
- Evaluating Control Deficiencies
- Maintaining SSAE Standards Compliance
Follow the below links for further detail information:
. Seminar Highlights
. Learning Objectives
. Key Issues on the Agenda
The retail cost of this CPE seminar is $1,900.00 for the first attendee from a single organization. Discounts are available for more than one attendee from each organization: (2) $3,600.00 (3) $5,400.00 (4) $7,100.00 (5) $8,800.00.
To reserve your space, click here on "SIGN-UP NOW!". You have to complete the registration form and use the corresponding "Submit Registration Form and Move to Payment Options Page" button for filing the registration and moving to the payment page.
Each attendee will receive 20 CPE Hours (YB). A certificate of completion will be provided.
Program Level of Understanding: Basic
Prerequisites: None
Advance Preparation: None
Delivery Format: Group Internet Based
NASBA Field(s) of Study: Auditing, Information Technology
CPE Credits: 20, based on 50 minutes of instruction per hour
Testimonials:
View All Testimonials
Upcoming SSAE SOC Audits: Auditee - Auditor - Assessor Training Workshops
|
Day - Date |
Event Timing |
|
|
|
April |
5-9 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, April 5-9, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
May |
3-7 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, May 3-7, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
June |
7-11 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, June 7-11, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
July |
5-9 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, July 5-9, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
August |
2-6 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, August 2-6, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
September |
20-24 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, September 20-24, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
October |
18-22 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, October 18-22, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
November |
1-5 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, November 1-5, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
December |
13-17 |
2021 |
|
|
|
Webinar Presentation |
Monday-Friday, December 13-17, 2021 |
Daily 10:00 a.m. - 2:45 p.m. Central Time |
...... |
Signup Now |
Lunch 12:00 to 12:30 |
|
|
|
|
|
|
|
|
|
top of page
Benefits of Attending
Compliance Seminar's professionals have been working with internal controls for many years and have been providing SOX compliance assistance within the IT General Controls area and conducting SSAE 18 audits.
top of page
Seminar Highlights
Fundamental changes have come to Service Organization Control (SOC) reports in the last ten years. In 2011, SAS 70 was superseded by the SSAE 16, and then in May 2017, SSAE 18 become effective.
This move to Statement of Auditing Engagements (SSAE) 18 brings along with it significant updates which strengthen the overall quality of the SOC reports.
You will learn about the SOC framework in this event. Known as Service Organization Control (SOC) reports, the SOC framework is a radical departure from the one-size-fits-all approach held by SAS 70 for approximately twenty (20) years. In short, with three reporting options - SOC 1, SOC 2, and SOC 3 - service organizations have more flexibility and more choices regarding third-party assessments of their control environments. While SOC 1 has quickly become the dominant reporting option, SOC 2 and SOC 3 are extremely viable, especially for many of today's technology companies.
top of page
Learning Objectives
- Review "What is a Service Organization Control (SOC)?
- Review the progression from Statement on Auditing Standards (SAS) 70 to Statement on Standards for Attestation Engagements (SSAE) 16 and then to SSAE 18.
- Recognize the reasons for SSAE 18 based reports for the various types of service and subservice organizations.
- Understand the differences between each of the various types of SSAE 18 reports: SOC 1, SOC 2 and SOC 3.
- Recognize the requirements to prepare for a SOC engagement.
- Recognize the requirements for user entities.
top of page
Key Issues on the Agenda
Section 1 - Introduction and Overview of SSAE 18
Section 2 - Types of SSAE 18 Audits
Section 3 - Components of the Audit Report
Section 4 - Sample Reports
Section 5 - SOX, COSO and SSAE 18
Section 6 - The SSAE 18 Data Center Audit
Section 7 - How to Conduct the SSAE 18 Audit
Section 8 - Developing the System Description
Section 9 - Summary of Concepts
Section 10 - Testing of Controls
Section 11 - IT Control Frameworks
Section 12 - Testing the Physical Security Controls
Section 13 - Testing the Logical Security Controls
Section 14 - Testing the Changes Controls
Section 15 - Testing Operations, Backup and Restoration Controls
Section 16 - Testing the IPO and User Controls
Section 17 - Evaluating the SSAE 18 Report
Section 18 - Going Forward with Your Vendor Management Program
|
top of page
Seminar Schedule
Internal Control & CPA Focused Training Seminars
Corporate Compliance Seminars presents two families of professional continuing education (CPE) seminars:
Internal Control & CPA Focused Training Seminars (Details)
Internal Auditor Focused Training Seminars (Details)
The internal control seminars we present can benefit a variety of attendees:
- Non-accelerated filers who may just be getting their documentation underway for Section 404 compliance,
- Public companies looking to improve their effectiveness and efficiency of their Section 404 compliance,
- Nonprofit organizations, governmental agencies and other groups that want to improve the integration of their governance, risk and compliance (GRC) efforts,
- Executives and Board of Directors members who can gain insights from our "Best Practices" examples to really understand SOX Section 404,
- Anyone finds practical advice from our real-world experience with the implementation of internal controls over financial reporting (ICFR).
The internal audit seminars we present can benefit a variety of attendees:
- The new internal auditor can be oriented to the profession and the work,
- Auditors looking for improvements in their approach and knowledge,
- Professionals looking to improve the content of their workpapers and the impact of audit reports,
- Any organization that desires to improve the effectiveness of their internal audit department,
- Audit Managers looking for education concerning current audit issues,
- Anyone finds practical advice from our real-world experience with internal and external auditing.
top of page
Experts Providing CPE Training Events
Corporate Compliance Seminars (CCS) was created by experts who enjoy providing CPE training events. All our experts have years of experience in providing training courses, workshops and consulting on internal controls, internal auditing, information technology, cybersecurity and accounting related subjects. We have focused on SOX, COSO, PCAOB, COBIT, CMMI, GRC, GAAP, IFRS, AICPA, GAO, NAIC, ISO, and IIA Standards. We are your best source for continuing professional education (CPE).
Our programs, live in-person, webinar and on-demand, provide CPE for professionals with CPA, CGA, CIA, CFE, CISA, CMA and CA designations. CCS is focused on providing the best learning programs in using three distinct distribution channels: live in-person events, virtual webinar events and on-demand self-study e-learning.
Corporate Compliance Seminars presents CPE to a range of professionals, auditors, accountants, finance staff, compliance personnel, information technology (IT) professionals, Boards of Directors and Audit Committees. We examine the details of risk management, Sarbanes-Oxley Act compliance, Model Audit Rule (MAR) compliance, auditing, internal controls, cybersecurity and compliance, and fraud prevention and detection.
Within the U.S.A. marketplace, Corporate Compliance Seminars allows the attendee to earn NASBA CPE credit.
Our events focus on the details of the Sarbanes-Oxley Act of 2002 (SOX), Internal Controls over Financial Reporting (ICFR), Committee of Sponsoring Organizations of the Treadway Commission (COSO) Internal Control Frameworks, ISACA's Control Objectives over Information Technology (COBIT), Information Technology Infrastructure Library (ITIL), Open Compliance & Ethics Group's (OCEG) Governance, Risk & Compliance (GRC) methodology, PCAOB's Auditing Standard 5 (AS5), AICPA auditing standards, and NAIC regulatory model regulations and acts .
Our live in-person events are generally presented in a small classroom setting with two to five attendees. Over the last few weeks, we have come to the understand we need to provide distant e-learning events. We are now in the process of moving all our content to an online available status. We have created distant e-learning opportunities using both a virtual webinar event approach and on-demand e-learning self-study modules. These two e-learning approaches: webinars and on-demand self-study with extended web access to our content into the global continuing professional development (CPD) marketplace. In the webinar e-learning events we will limit the number of students to maximize the interaction between the live instructor and attendees. The on-demand self-study e-learning modules will be created and offered to meet the NASBA CPE credit requirements .
Our seminars provide CPE for the CPA, CFE, CIA, CISA, auditors and others with effective and engaging internal audit training courses.
Our instructors have had direct experience in the following industries: financial activities, bank, insurance, healthcare, construction, leisure and hospitality, professional and business services, mining and oil & gas extraction, manufacturing, educational, government agencies, transportation, software, technical, hi-tech and agricultural.
top of page
|