SlideShare a Scribd company logo

ISAE3402ReportComparesKeyDifferencesToSAS70

Download as PPT, PDF
H
Hut & Co. Registeraccountants

1. ISAE 3402 is an international standard for assurance reports on controls at third party service organizations, providing an alternative to the American SAS70 standard. 2. Key differences from SAS70 include that ISAE3402 has a broader scope than just financial reporting controls and requires management assertions about responsibility for controls. 3. Both ISAE3402 and SAS70 have two types of reports (Type A and B) that describe controls design and operating effectiveness over a period of time.

1 of 14
ISAE 3402 - abstract Some key concepts and the major differences when compared to SAS70 Drs. T. (Temme) Sikkema RA – [email_address] – Netherlands – September 2009
The importance of Third Party Reporting 1 ,[object Object],[object Object],[object Object]
The importance of Third Party Reporting 2 ,[object Object],[object Object]
Third Party Reporting: enter SAS70 ,[object Object],[object Object],[object Object]
SAS70 – key features 1 ,[object Object],[object Object],[object Object]
SAS70 – key features 2 ,[object Object],[object Object]
SAS70 – key features 3 ,[object Object],[object Object],[object Object]
Generally tested types of processes ,[object Object],[object Object],[object Object],[object Object],[object Object]
Generally tested types of controls ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
SAS70 audit renders an opinion on: ,[object Object],[object Object],[object Object],[object Object]
Third Party Reporting: enter ISAE3402 1 ,[object Object],[object Object],[object Object],[object Object]
Third Party Reporting: enter ISAE3402 2 ,[object Object],[object Object]
ISAE3402 – key features 1 ,[object Object],[object Object],[object Object],[object Object]
ISAE3402 – key features 2 ,[object Object],[object Object],[object Object]

Recommended

Syllabus
SyllabusSyllabus
SyllabusAnkit Agarwal
 
Topic 4 internal control system (ics)
Topic 4 internal control system (ics)Topic 4 internal control system (ics)
Topic 4 internal control system (ics)sakura rena
 
Implementation of SAs, Audit Process Flow
Implementation of SAs, Audit Process FlowImplementation of SAs, Audit Process Flow
Implementation of SAs, Audit Process FlowSurashree Sahasrabudhe
 
Sa 230
Sa 230Sa 230
Sa 230Niket Talwar
 
Topic 6 audit documentation
Topic 6 audit documentationTopic 6 audit documentation
Topic 6 audit documentationsakura rena
 
7. programme
7. programme7. programme
7. programmeSyed Osama Rizvi
 
Topic 3 companies act 1965 requirements & mia by law
Topic 3 companies act 1965 requirements & mia by lawTopic 3 companies act 1965 requirements & mia by law
Topic 3 companies act 1965 requirements & mia by lawsakura rena
 
Auditing 4
Auditing 4Auditing 4
Auditing 4Nur Dalila Zamri
 

Recommended

Syllabus
SyllabusSyllabus
SyllabusAnkit Agarwal
 
Topic 4 internal control system (ics)
Topic 4 internal control system (ics)Topic 4 internal control system (ics)
Topic 4 internal control system (ics)sakura rena
 
Implementation of SAs, Audit Process Flow
Implementation of SAs, Audit Process FlowImplementation of SAs, Audit Process Flow
Implementation of SAs, Audit Process FlowSurashree Sahasrabudhe
 
Sa 230
Sa 230Sa 230
Sa 230Niket Talwar
 
Topic 6 audit documentation
Topic 6 audit documentationTopic 6 audit documentation
Topic 6 audit documentationsakura rena
 
7. programme
7. programme7. programme
7. programmeSyed Osama Rizvi
 
Topic 3 companies act 1965 requirements & mia by law
Topic 3 companies act 1965 requirements & mia by lawTopic 3 companies act 1965 requirements & mia by law
Topic 3 companies act 1965 requirements & mia by lawsakura rena
 
Auditing 4
Auditing 4Auditing 4
Auditing 4Nur Dalila Zamri
 
Audit
AuditAudit
AuditTushar Kadlag
 
Audit in Romania
Audit in RomaniaAudit in Romania
Audit in RomaniaBridgeWest.eu
 
Two series audit documentation-
Two series audit documentation-Two series audit documentation-
Two series audit documentation-Amalina1234
 
Audit documentation
Audit documentationAudit documentation
Audit documentationVenkatesan Murali
 
Topic 6 audit documentation
Topic 6 audit documentationTopic 6 audit documentation
Topic 6 audit documentationsakura rena
 
5. documentation sep 2013
5. documentation sep 20135. documentation sep 2013
5. documentation sep 2013Syed Osama Rizvi
 
Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)sakura rena
 
Statement on Auditing Standards presentation
Statement on Auditing Standards presentationStatement on Auditing Standards presentation
Statement on Auditing Standards presentationDominique Nichols
 
Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Support for Improvement in Governance and Management SIGMA
 
Audit assignment
Audit assignmentAudit assignment
Audit assignmentShweta Rawat
 
Basic concepts in auditing
Basic concepts in auditingBasic concepts in auditing
Basic concepts in auditingCARAVI2016
 
Topic 12 audit report (1)
Topic 12 audit report (1)Topic 12 audit report (1)
Topic 12 audit report (1)sakura rena
 
Topic 7 audit planning (1)
Topic 7 audit planning (1)Topic 7 audit planning (1)
Topic 7 audit planning (1)sakura rena
 
Topic 12 audit report
Topic 12 audit reportTopic 12 audit report
Topic 12 audit reportsakura rena
 
Prepare a Preliminary Audit Plan based on a Case Study
Prepare a Preliminary Audit Plan based on a Case StudyPrepare a Preliminary Audit Plan based on a Case Study
Prepare a Preliminary Audit Plan based on a Case StudyDavid Thompson
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit Systemvikasiba
 
Agreeing the Terms of Audit Engagement
Agreeing the Terms of Audit EngagementAgreeing the Terms of Audit Engagement
Agreeing the Terms of Audit EngagementDr. Soheli Ghose Banerjee
 
Presentation on Audit Findings
Presentation on Audit FindingsPresentation on Audit Findings
Presentation on Audit FindingsDeshapriya Senanayake
 
Ch06 modern auditing boynton
Ch06 modern auditing boyntonCh06 modern auditing boynton
Ch06 modern auditing boyntonArdita Wulandari
 
Topic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement auditTopic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement auditsakura rena
 
Auditor Reporting on Controls at Service Organizations
Auditor Reporting on Controls at Service OrganizationsAuditor Reporting on Controls at Service Organizations
Auditor Reporting on Controls at Service OrganizationsUniversity of Waterloo
 
information system and computers
information system and computersinformation system and computers
information system and computers9535814851
 

More Related Content

What's hot

Two series audit documentation-
Two series audit documentation-Two series audit documentation-
Two series audit documentation-Amalina1234
 
Topic 6 audit documentation
Topic 6 audit documentationTopic 6 audit documentation
Topic 6 audit documentationsakura rena
 
Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)sakura rena
 
Statement on Auditing Standards presentation
Statement on Auditing Standards presentationStatement on Auditing Standards presentation
Statement on Auditing Standards presentationDominique Nichols
 
Basic concepts in auditing
Basic concepts in auditingBasic concepts in auditing
Basic concepts in auditingCARAVI2016
 
Topic 12 audit report (1)
Topic 12 audit report (1)Topic 12 audit report (1)
Topic 12 audit report (1)sakura rena
 
Topic 7 audit planning (1)
Topic 7 audit planning (1)Topic 7 audit planning (1)
Topic 7 audit planning (1)sakura rena
 
Topic 12 audit report
Topic 12 audit reportTopic 12 audit report
Topic 12 audit reportsakura rena
 
Prepare a Preliminary Audit Plan based on a Case Study
Prepare a Preliminary Audit Plan based on a Case StudyPrepare a Preliminary Audit Plan based on a Case Study
Prepare a Preliminary Audit Plan based on a Case StudyDavid Thompson
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit Systemvikasiba
 
Ch06 modern auditing boynton
Ch06 modern auditing boyntonCh06 modern auditing boynton
Ch06 modern auditing boyntonArdita Wulandari
 
Topic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement auditTopic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement auditsakura rena
 

What's hot (20)

Audit
AuditAudit
Audit
 
Audit in Romania
Audit in RomaniaAudit in Romania
Audit in Romania
 
Two series audit documentation-
Two series audit documentation-Two series audit documentation-
Two series audit documentation-
 
Audit documentation
Audit documentationAudit documentation
Audit documentation
 
Topic 6 audit documentation
Topic 6 audit documentationTopic 6 audit documentation
Topic 6 audit documentation
 
5. documentation sep 2013
5. documentation sep 20135. documentation sep 2013
5. documentation sep 2013
 
Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)
 
Statement on Auditing Standards presentation
Statement on Auditing Standards presentationStatement on Auditing Standards presentation
Statement on Auditing Standards presentation
 
Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...Workshop presentation on internal control and internal audit by Jose Viegas R...
Workshop presentation on internal control and internal audit by Jose Viegas R...
 
Audit assignment
Audit assignmentAudit assignment
Audit assignment
 
Basic concepts in auditing
Basic concepts in auditingBasic concepts in auditing
Basic concepts in auditing
 
Topic 12 audit report (1)
Topic 12 audit report (1)Topic 12 audit report (1)
Topic 12 audit report (1)
 
Topic 7 audit planning (1)
Topic 7 audit planning (1)Topic 7 audit planning (1)
Topic 7 audit planning (1)
 
Topic 12 audit report
Topic 12 audit reportTopic 12 audit report
Topic 12 audit report
 
Prepare a Preliminary Audit Plan based on a Case Study
Prepare a Preliminary Audit Plan based on a Case StudyPrepare a Preliminary Audit Plan based on a Case Study
Prepare a Preliminary Audit Plan based on a Case Study
 
External &Internal Audit System
External &Internal Audit SystemExternal &Internal Audit System
External &Internal Audit System
 
Agreeing the Terms of Audit Engagement
Agreeing the Terms of Audit EngagementAgreeing the Terms of Audit Engagement
Agreeing the Terms of Audit Engagement
 
Presentation on Audit Findings
Presentation on Audit FindingsPresentation on Audit Findings
Presentation on Audit Findings
 
Ch06 modern auditing boynton
Ch06 modern auditing boyntonCh06 modern auditing boynton
Ch06 modern auditing boynton
 
Topic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement auditTopic 2 objectives and scope of financial statement audit
Topic 2 objectives and scope of financial statement audit
 

Similar to ISAE3402ReportComparesKeyDifferencesToSAS70

Auditor Reporting on Controls at Service Organizations
Auditor Reporting on Controls at Service OrganizationsAuditor Reporting on Controls at Service Organizations
Auditor Reporting on Controls at Service OrganizationsUniversity of Waterloo
 
information system and computers
information system and computersinformation system and computers
information system and computers9535814851
 
Evaluating Service Organization Control Reports
Evaluating Service Organization Control ReportsEvaluating Service Organization Control Reports
Evaluating Service Organization Control ReportsJay Crossland
 
Audit clauses in IT agreements
Audit clauses in IT agreementsAudit clauses in IT agreements
Audit clauses in IT agreementsRichard Austin
 
An IT Service Reporting Framework for Effective Implementation of ITIL Contin...
An IT Service Reporting Framework for Effective Implementation of ITIL Contin...An IT Service Reporting Framework for Effective Implementation of ITIL Contin...
An IT Service Reporting Framework for Effective Implementation of ITIL Contin...Nancy Ideker
 
SSAE 16 Transitions Overview
SSAE 16 Transitions OverviewSSAE 16 Transitions Overview
SSAE 16 Transitions OverviewJeffrey Paulette
 
Asset Manager’s Guide to SOC 1
Asset Manager’s Guide to SOC 1Asset Manager’s Guide to SOC 1
Asset Manager’s Guide to SOC 1Grant Thornton LLP
 
Account Right SOC Services brochure.pptx
Account Right SOC Services brochure.pptxAccount Right SOC Services brochure.pptx
Account Right SOC Services brochure.pptxGaneshMeenakshiSunda4
 
How to effectively use ISO 27001 Certification and SOC 2 Reports
How to effectively use ISO 27001 Certification and SOC 2 ReportsHow to effectively use ISO 27001 Certification and SOC 2 Reports
How to effectively use ISO 27001 Certification and SOC 2 ReportsSalvi Jansen
 
Iso 20000 standard implementation
Iso 20000 standard implementationIso 20000 standard implementation
Iso 20000 standard implementationIITSW Company
 
Planning for a new Service Organization Control (SOC) report
Planning for a new Service Organization Control (SOC) reportPlanning for a new Service Organization Control (SOC) report
Planning for a new Service Organization Control (SOC) reportJay Crossland
 
B014 2010-iaasb-handbook-isae-3402
B014 2010-iaasb-handbook-isae-3402B014 2010-iaasb-handbook-isae-3402
B014 2010-iaasb-handbook-isae-3402RS NAVARRO
 
ISA 402 Audit Considerations Relating to an Entity Using a Service Organisation
ISA 402 Audit Considerations Relating to an Entity Using a Service OrganisationISA 402 Audit Considerations Relating to an Entity Using a Service Organisation
ISA 402 Audit Considerations Relating to an Entity Using a Service OrganisationSazzad Hossain, ITP, MBA, CSCA™
 
Sas 70 Readiness
Sas 70 ReadinessSas 70 Readiness
Sas 70 Readinessmpotorti
 
SOC Certification for Service Providers: Securing Customer Data
SOC Certification for Service Providers: Securing Customer DataSOC Certification for Service Providers: Securing Customer Data
SOC Certification for Service Providers: Securing Customer DataShyamMishra72
 
TISA-Important-Business-Services-Guide-November-2021.pdf
TISA-Important-Business-Services-Guide-November-2021.pdfTISA-Important-Business-Services-Guide-November-2021.pdf
TISA-Important-Business-Services-Guide-November-2021.pdfAbdetaImi
 
PECB Webinar: Service Catalog among frameworks and standards
PECB Webinar: Service Catalog among frameworks and standardsPECB Webinar: Service Catalog among frameworks and standards
PECB Webinar: Service Catalog among frameworks and standardsPECB
 

Similar to ISAE3402ReportComparesKeyDifferencesToSAS70 (20)

Auditor Reporting on Controls at Service Organizations
Auditor Reporting on Controls at Service OrganizationsAuditor Reporting on Controls at Service Organizations
Auditor Reporting on Controls at Service Organizations
 
information system and computers
information system and computersinformation system and computers
information system and computers
 
Evaluating Service Organization Control Reports
Evaluating Service Organization Control ReportsEvaluating Service Organization Control Reports
Evaluating Service Organization Control Reports
 
Audit clauses in IT agreements
Audit clauses in IT agreementsAudit clauses in IT agreements
Audit clauses in IT agreements
 
An IT Service Reporting Framework for Effective Implementation of ITIL Contin...
An IT Service Reporting Framework for Effective Implementation of ITIL Contin...An IT Service Reporting Framework for Effective Implementation of ITIL Contin...
An IT Service Reporting Framework for Effective Implementation of ITIL Contin...
 
Due dilligence on a cpa firm or other accounting services provdier
Due dilligence on a cpa firm or other accounting services provdierDue dilligence on a cpa firm or other accounting services provdier
Due dilligence on a cpa firm or other accounting services provdier
 
SSAE 16 Transitions Overview
SSAE 16 Transitions OverviewSSAE 16 Transitions Overview
SSAE 16 Transitions Overview
 
Asset Manager’s Guide to SOC 1
Asset Manager’s Guide to SOC 1Asset Manager’s Guide to SOC 1
Asset Manager’s Guide to SOC 1
 
Account Right SOC Services brochure.pptx
Account Right SOC Services brochure.pptxAccount Right SOC Services brochure.pptx
Account Right SOC Services brochure.pptx
 
How to effectively use ISO 27001 Certification and SOC 2 Reports
How to effectively use ISO 27001 Certification and SOC 2 ReportsHow to effectively use ISO 27001 Certification and SOC 2 Reports
How to effectively use ISO 27001 Certification and SOC 2 Reports
 
Iso 20000 standard implementation
Iso 20000 standard implementationIso 20000 standard implementation
Iso 20000 standard implementation
 
Planning for a new Service Organization Control (SOC) report
Planning for a new Service Organization Control (SOC) reportPlanning for a new Service Organization Control (SOC) report
Planning for a new Service Organization Control (SOC) report
 
B014 2010-iaasb-handbook-isae-3402
B014 2010-iaasb-handbook-isae-3402B014 2010-iaasb-handbook-isae-3402
B014 2010-iaasb-handbook-isae-3402
 
ISA 402 Audit Considerations Relating to an Entity Using a Service Organisation
ISA 402 Audit Considerations Relating to an Entity Using a Service OrganisationISA 402 Audit Considerations Relating to an Entity Using a Service Organisation
ISA 402 Audit Considerations Relating to an Entity Using a Service Organisation
 
Sas 70 Readiness
Sas 70 ReadinessSas 70 Readiness
Sas 70 Readiness
 
SMKI vs SMAP vs SMM vs SML v04
SMKI vs SMAP vs SMM vs SML v04SMKI vs SMAP vs SMM vs SML v04
SMKI vs SMAP vs SMM vs SML v04
 
SOC Certification for Service Providers: Securing Customer Data
SOC Certification for Service Providers: Securing Customer DataSOC Certification for Service Providers: Securing Customer Data
SOC Certification for Service Providers: Securing Customer Data
 
TISA-Important-Business-Services-Guide-November-2021.pdf
TISA-Important-Business-Services-Guide-November-2021.pdfTISA-Important-Business-Services-Guide-November-2021.pdf
TISA-Important-Business-Services-Guide-November-2021.pdf
 
New ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation StepsNew ISO 20000-1:2018 Changes, Implementation Steps
New ISO 20000-1:2018 Changes, Implementation Steps
 
PECB Webinar: Service Catalog among frameworks and standards
PECB Webinar: Service Catalog among frameworks and standardsPECB Webinar: Service Catalog among frameworks and standards
PECB Webinar: Service Catalog among frameworks and standards
 

ISAE3402ReportComparesKeyDifferencesToSAS70

  • 1. ISAE 3402 - abstract Some key concepts and the major differences when compared to SAS70 Drs. T. (Temme) Sikkema RA – [email_address] – Netherlands – September 2009
  • 2.
  • 3.
  • 4.
  • 5.
  • 6.
  • 7.
  • 8.
  • 9.
  • 10.
  • 11.
  • 12.
  • 13.
  • 14.