SlideShare a Scribd company logo

Sas 70 Readiness

Download as PPT, PDF
M
mpotorti

Tips and Pros/Cons of a SAS 70 Audit

1 of 11
MP ConsultingMP Consulting SAS 70 ReadinessSAS 70 Readiness
Contents  Background  Gaining Assurance  Benefits  SAS 70 Readiness
Background  Auditors of US Securities and Exchange Commission (“SEC”) registrants are required to issue an opinion over their internal control environments  Specifically, they need to gain comfort over their client’s internal controls over financial reporting  If their client outsources certain key functions (i.e. Payroll) to a 3rd Party Service Organisation (“Provider”), auditors still need to obtain assurance that the control environment where the key functions are operating is effective
Gaining Assurance  SEC registrants look to their Provider to present evidence that their internal control environment is operating effectively  The registrant can obtain this basically in one of two ways:  Option A: Auditing their Provider  Option B: Reliance on a SAS 70 Type II Report
Option A: Audit the Provider  On an annual basis, each registrant will send a team into the Provider to conduct walkthroughs of controls and perform testing of the control environment by selecting samples and reviewing evidence  This is an additional burden to the registrant and the Provider:  Registrant needs to absorb cost and utilise resources to perform this work every year  Provider’s operation is disrupted through gathering evidence and employee efforts are diverted from their normal responsibilities  This burden is compounded for the Provider due to the fact that each registrant needs to send their own team in to perform the work  The registrant’s outside auditor may also need to perform their own testing at the Provider which adds to cost and employee efforts
Option B: Reliance on a SAS 70 Type II Report  The Provider hires an outside audit firm to perform an annual SAS 70 audit  The audit firm reviews the Provider’s control objectives and tests control activities that support those objectives  A report is issued by the audit firm which can be used by the Provider’s clients and their auditors
Disadvantages of Not Obtaining a SAS 70 Report  Multiple auditors visiting the Provider’s site and requiring evidence of a secured control environment  Extensive disruption of daily operations in order to comply with individual client requests (i.e. preparation of reports to satisfy clients and their auditors)  Potential loss of clients due to lack of evidence of an effective control environment  Limited potential to attract new clients who require a SAS 70 Audit to be performed
Benefits of SAS 70 Type II Report  One set of auditors coming in to perform testing rather than multiple teams from different clients  Cost savings through minimal disruption of daily operations so employees can focus on the business  Retention of clients through giving them the assurance that they need: evidence of a valid internal control environment  Very effective as a marketing tool to attract new business and expand operations  Given the fact that a global convergence of standards / compliance requirements is occurring (i.e. IFRS), a SAS 70 Report will enhance the readiness of the Provider to meet these requirements and give them a distinct edge over competition
Where do we start?  The most cost effective way to determine if your entity is ready for a SAS 70 Audit is through the performance of a SAS 70 Readiness Assessment  An external independent party will conduct interviews, review established Control Objectives and supporting Activities and examine sample evidence to support the Activities  A report will then be finalised and findings will be communicated to Management  Based on findings, action plans may need to be developed in order to enhance the control environment
MP Consulting  Michael Potorti, a US Certified Public Accountant and former Big 4 Audit Manager, is the Managing Director of MP Consulting, a London and New York based company focused on helping companies with the development and enhancement of Internal Control Structures, Sarbanes Oxley (SOX) compliance and Internal Audit outsourcing. We have been extensively involved in US and European Sarbanes-Oxley Projects for multiple FTSE 100 and Fortune 500 entities. Our Industry experience includes Oil/Gas, Manufacturing, Banking, Insurance, Service and Technology (among others). We have consulted for both management of companies and assisted Big 4 firms with external audits. We have given seminars on effective internal controls and have helped companies with US SOX compliance since the law was passed in 2002.
For further information please contact:For further information please contact: Michael Potorti CPAMichael Potorti CPA DirectorDirector MP ConsultingMP Consulting michaelp@mpconsultingltd.commichaelp@mpconsultingltd.com Tel. : +44 (0)7914 191455Tel. : +44 (0)7914 191455 www.mpconsultingltd.comwww.mpconsultingltd.com

Recommended

Quality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsQuality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsDr. Soheli Ghose Banerjee
 
Documentation
Documentation Documentation
Documentation Dr. Soheli Ghose Banerjee
 
Important CA Final Notes SA 200 - 299
Important CA Final Notes SA 200 - 299Important CA Final Notes SA 200 - 299
Important CA Final Notes SA 200 - 299QLI
 
Audit Quality
Audit QualityAudit Quality
Audit QualityNik Hasyudeen
 
Cost audit programme
Cost audit programmeCost audit programme
Cost audit programmeDr. Ankita Chaturvedi
 
SA 200 to 299
SA 200 to 299SA 200 to 299
SA 200 to 299Ajil Salam A
 
Value added procurement auditing
Value added procurement auditingValue added procurement auditing
Value added procurement auditingFrederick Altum Pokoo-Aikins
 
information system and computers
information system and computersinformation system and computers
information system and computers9535814851
 

Recommended

Quality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsQuality Control of an Audit of Financial Statements
Quality Control of an Audit of Financial StatementsDr. Soheli Ghose Banerjee
 
Documentation
Documentation Documentation
Documentation Dr. Soheli Ghose Banerjee
 
Important CA Final Notes SA 200 - 299
Important CA Final Notes SA 200 - 299Important CA Final Notes SA 200 - 299
Important CA Final Notes SA 200 - 299QLI
 
Audit Quality
Audit QualityAudit Quality
Audit QualityNik Hasyudeen
 
Cost audit programme
Cost audit programmeCost audit programme
Cost audit programmeDr. Ankita Chaturvedi
 
SA 200 to 299
SA 200 to 299SA 200 to 299
SA 200 to 299Ajil Salam A
 
Value added procurement auditing
Value added procurement auditingValue added procurement auditing
Value added procurement auditingFrederick Altum Pokoo-Aikins
 
information system and computers
information system and computersinformation system and computers
information system and computers9535814851
 
Principles of Audit
Principles of AuditPrinciples of Audit
Principles of AuditVadivelM9
 
Types of audit
Types of auditTypes of audit
Types of auditVadivelM9
 
Internal audit ( pdf drive )
Internal audit ( pdf drive )Internal audit ( pdf drive )
Internal audit ( pdf drive )TaDo8
 
Agreeing the Terms of Audit Engagement
Agreeing the Terms of Audit EngagementAgreeing the Terms of Audit Engagement
Agreeing the Terms of Audit EngagementDr. Soheli Ghose Banerjee
 
Audit an overview
Audit an overviewAudit an overview
Audit an overviewHazel Sarmiento
 
Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)sakura rena
 
Lecture 11, Chapter 18, Completing the audit
Lecture 11, Chapter 18, Completing the auditLecture 11, Chapter 18, Completing the audit
Lecture 11, Chapter 18, Completing the auditSazzad Hossain, ITP, MBA, CSCA™
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniquesmack19921
 
Lecture slide, chapter 3,Professional Ethics, Independence and Audit Quality
Lecture slide, chapter 3,Professional Ethics, Independence and Audit QualityLecture slide, chapter 3,Professional Ethics, Independence and Audit Quality
Lecture slide, chapter 3,Professional Ethics, Independence and Audit QualitySazzad Hossain, ITP, MBA, CSCA™
 
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and Payroll
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and PayrollLecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and Payroll
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and PayrollSazzad Hossain, ITP, MBA, CSCA™
 
Forensic audit & procedure
Forensic audit & procedureForensic audit & procedure
Forensic audit & procedureVadivelM9
 
Ch 02. Obtaining an Engagement
Ch 02. Obtaining an Engagement Ch 02. Obtaining an Engagement
Ch 02. Obtaining an Engagement Sazzad Hossain, ITP, MBA, CSCA™
 
Audit assignment
Audit assignmentAudit assignment
Audit assignmentShweta Rawat
 
Lecture slide ,chapter 2, Governance and the Auditor
Lecture slide ,chapter 2, Governance and the AuditorLecture slide ,chapter 2, Governance and the Auditor
Lecture slide ,chapter 2, Governance and the AuditorSazzad Hossain, ITP, MBA, CSCA™
 
Chapter 11, Tests of Controls
Chapter 11, Tests of ControlsChapter 11, Tests of Controls
Chapter 11, Tests of ControlsSazzad Hossain, ITP, MBA, CSCA™
 
Test of control
Test of controlTest of control
Test of controlVadivelM9
 
Lecture slide ,chapter 6, Overview of the audit of financial reports
Lecture slide ,chapter 6, Overview of the audit of financial reportsLecture slide ,chapter 6, Overview of the audit of financial reports
Lecture slide ,chapter 6, Overview of the audit of financial reportsSazzad Hossain, ITP, MBA, CSCA™
 
Chapter 3
Chapter 3Chapter 3
Chapter 3Nur Dalila Zamri
 
Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...
Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...
Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...Support for Improvement in Governance and Management SIGMA
 
International Standards on Auditing - Summarized
International Standards on Auditing - SummarizedInternational Standards on Auditing - Summarized
International Standards on Auditing - SummarizedFawad Hassan
 
social audit
social auditsocial audit
social auditDebashish Debnath
 
SOC Certification Journey: From Application to Compliance
SOC Certification Journey: From Application to ComplianceSOC Certification Journey: From Application to Compliance
SOC Certification Journey: From Application to ComplianceShyamMishra72
 

More Related Content

What's hot

Principles of Audit
Principles of AuditPrinciples of Audit
Principles of AuditVadivelM9
 
Types of audit
Types of auditTypes of audit
Types of auditVadivelM9
 
Internal audit ( pdf drive )
Internal audit ( pdf drive )Internal audit ( pdf drive )
Internal audit ( pdf drive )TaDo8
 
Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)sakura rena
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniquesmack19921
 
Lecture slide, chapter 3,Professional Ethics, Independence and Audit Quality
Lecture slide, chapter 3,Professional Ethics, Independence and Audit QualityLecture slide, chapter 3,Professional Ethics, Independence and Audit Quality
Lecture slide, chapter 3,Professional Ethics, Independence and Audit QualitySazzad Hossain, ITP, MBA, CSCA™
 
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and Payroll
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and PayrollLecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and Payroll
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and PayrollSazzad Hossain, ITP, MBA, CSCA™
 
Forensic audit & procedure
Forensic audit & procedureForensic audit & procedure
Forensic audit & procedureVadivelM9
 
Test of control
Test of controlTest of control
Test of controlVadivelM9
 
Lecture slide ,chapter 6, Overview of the audit of financial reports
Lecture slide ,chapter 6, Overview of the audit of financial reportsLecture slide ,chapter 6, Overview of the audit of financial reports
Lecture slide ,chapter 6, Overview of the audit of financial reportsSazzad Hossain, ITP, MBA, CSCA™
 
International Standards on Auditing - Summarized
International Standards on Auditing - SummarizedInternational Standards on Auditing - Summarized
International Standards on Auditing - SummarizedFawad Hassan
 

What's hot (20)

Principles of Audit
Principles of AuditPrinciples of Audit
Principles of Audit
 
Types of audit
Types of auditTypes of audit
Types of audit
 
Internal audit ( pdf drive )
Internal audit ( pdf drive )Internal audit ( pdf drive )
Internal audit ( pdf drive )
 
Agreeing the Terms of Audit Engagement
Agreeing the Terms of Audit EngagementAgreeing the Terms of Audit Engagement
Agreeing the Terms of Audit Engagement
 
Audit an overview
Audit an overviewAudit an overview
Audit an overview
 
Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)Topic 5 audit evidence and auditing procedure (2)
Topic 5 audit evidence and auditing procedure (2)
 
Lecture 11, Chapter 18, Completing the audit
Lecture 11, Chapter 18, Completing the auditLecture 11, Chapter 18, Completing the audit
Lecture 11, Chapter 18, Completing the audit
 
Introduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and TechniquesIntroduction to auditing, Meaning, Objects and Techniques
Introduction to auditing, Meaning, Objects and Techniques
 
Lecture slide, chapter 3,Professional Ethics, Independence and Audit Quality
Lecture slide, chapter 3,Professional Ethics, Independence and Audit QualityLecture slide, chapter 3,Professional Ethics, Independence and Audit Quality
Lecture slide, chapter 3,Professional Ethics, Independence and Audit Quality
 
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and Payroll
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and PayrollLecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and Payroll
Lecture 10, chap 15, Chapter 15,Auditing Purchases, Payables and Payroll
 
Forensic audit & procedure
Forensic audit & procedureForensic audit & procedure
Forensic audit & procedure
 
Ch 02. Obtaining an Engagement
Ch 02. Obtaining an Engagement Ch 02. Obtaining an Engagement
Ch 02. Obtaining an Engagement
 
Audit assignment
Audit assignmentAudit assignment
Audit assignment
 
Lecture slide ,chapter 2, Governance and the Auditor
Lecture slide ,chapter 2, Governance and the AuditorLecture slide ,chapter 2, Governance and the Auditor
Lecture slide ,chapter 2, Governance and the Auditor
 
Chapter 11, Tests of Controls
Chapter 11, Tests of ControlsChapter 11, Tests of Controls
Chapter 11, Tests of Controls
 
Test of control
Test of controlTest of control
Test of control
 
Lecture slide ,chapter 6, Overview of the audit of financial reports
Lecture slide ,chapter 6, Overview of the audit of financial reportsLecture slide ,chapter 6, Overview of the audit of financial reports
Lecture slide ,chapter 6, Overview of the audit of financial reports
 
Chapter 3
Chapter 3Chapter 3
Chapter 3
 
Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...
Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...
Presentation 2, Audit methodologies, Workshop on System-based auditing, Tiran...
 
International Standards on Auditing - Summarized
International Standards on Auditing - SummarizedInternational Standards on Auditing - Summarized
International Standards on Auditing - Summarized
 

Similar to Sas 70 Readiness

SOC Certification Journey: From Application to Compliance
SOC Certification Journey: From Application to ComplianceSOC Certification Journey: From Application to Compliance
SOC Certification Journey: From Application to ComplianceShyamMishra72
 
Audit clauses in IT agreements
Audit clauses in IT agreementsAudit clauses in IT agreements
Audit clauses in IT agreementsRichard Austin
 
The SOC Certification Process Unveiled: Step-by-Step Guide
The SOC Certification Process Unveiled: Step-by-Step GuideThe SOC Certification Process Unveiled: Step-by-Step Guide
The SOC Certification Process Unveiled: Step-by-Step GuideShyamMishra72
 
Audit company - Audit for companies - PKC Management Consulting
Audit company - Audit for companies - PKC Management ConsultingAudit company - Audit for companies - PKC Management Consulting
Audit company - Audit for companies - PKC Management ConsultingPKCIndia2
 
A010 2010-iaasb-handbook-isa-220
A010 2010-iaasb-handbook-isa-220A010 2010-iaasb-handbook-isa-220
A010 2010-iaasb-handbook-isa-220RS NAVARRO
 
Psa 220-redrafted
Psa 220-redraftedPsa 220-redrafted
Psa 220-redraftedRS NAVARRO
 
Ch05 Client acceptance with accounting $ finance
Ch05 Client acceptance with accounting $ financeCh05 Client acceptance with accounting $ finance
Ch05 Client acceptance with accounting $ financeTamimKhan36
 
Demystifying SOC 2 Certification: What You Need to Know
Demystifying SOC 2 Certification: What You Need to KnowDemystifying SOC 2 Certification: What You Need to Know
Demystifying SOC 2 Certification: What You Need to KnowShyamMishra72
 
Topic 7 audit planning (2)
Topic 7 audit planning (2)Topic 7 audit planning (2)
Topic 7 audit planning (2)sakura rena
 
Policy on audit and non audit services
Policy on audit and non audit servicesPolicy on audit and non audit services
Policy on audit and non audit servicesK2AGold
 
AUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDI
AUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDIAUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDI
AUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDIAnthony Shitandi
 
Nia 220 Quality Control For An Audit Of Financial En Ingles
Nia 220 Quality Control For An Audit Of Financial En InglesNia 220 Quality Control For An Audit Of Financial En Ingles
Nia 220 Quality Control For An Audit Of Financial En Inglesguest4a971d
 
The process of issuing audit report by ca firm
The process of issuing audit report by ca firmThe process of issuing audit report by ca firm
The process of issuing audit report by ca firmEnamul Islam
 
Topic 7 audit planning
Topic 7 audit planningTopic 7 audit planning
Topic 7 audit planningsakura rena
 
financial statements and audit
financial statements and auditfinancial statements and audit
financial statements and auditسماج سيوك
 

Similar to Sas 70 Readiness (20)

social audit
social auditsocial audit
social audit
 
SOC Certification Journey: From Application to Compliance
SOC Certification Journey: From Application to ComplianceSOC Certification Journey: From Application to Compliance
SOC Certification Journey: From Application to Compliance
 
Audit clauses in IT agreements
Audit clauses in IT agreementsAudit clauses in IT agreements
Audit clauses in IT agreements
 
The SOC Certification Process Unveiled: Step-by-Step Guide
The SOC Certification Process Unveiled: Step-by-Step GuideThe SOC Certification Process Unveiled: Step-by-Step Guide
The SOC Certification Process Unveiled: Step-by-Step Guide
 
Audit company - Audit for companies - PKC Management Consulting
Audit company - Audit for companies - PKC Management ConsultingAudit company - Audit for companies - PKC Management Consulting
Audit company - Audit for companies - PKC Management Consulting
 
A010 2010-iaasb-handbook-isa-220
A010 2010-iaasb-handbook-isa-220A010 2010-iaasb-handbook-isa-220
A010 2010-iaasb-handbook-isa-220
 
Psa 220-redrafted
Psa 220-redraftedPsa 220-redrafted
Psa 220-redrafted
 
Ch05 Client acceptance with accounting $ finance
Ch05 Client acceptance with accounting $ financeCh05 Client acceptance with accounting $ finance
Ch05 Client acceptance with accounting $ finance
 
Demystifying SOC 2 Certification: What You Need to Know
Demystifying SOC 2 Certification: What You Need to KnowDemystifying SOC 2 Certification: What You Need to Know
Demystifying SOC 2 Certification: What You Need to Know
 
Topic 7 audit planning (2)
Topic 7 audit planning (2)Topic 7 audit planning (2)
Topic 7 audit planning (2)
 
Introduction of Assurance
Introduction of AssuranceIntroduction of Assurance
Introduction of Assurance
 
06304021
0630402106304021
06304021
 
Policy on audit and non audit services
Policy on audit and non audit servicesPolicy on audit and non audit services
Policy on audit and non audit services
 
AUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDI
AUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDIAUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDI
AUDIT ENGAGEMENT TUTORIAL BY ANTHONY SHITANDI
 
Quality Assurance
Quality AssuranceQuality Assurance
Quality Assurance
 
Nia 220 Quality Control For An Audit Of Financial En Ingles
Nia 220 Quality Control For An Audit Of Financial En InglesNia 220 Quality Control For An Audit Of Financial En Ingles
Nia 220 Quality Control For An Audit Of Financial En Ingles
 
Audit process
Audit processAudit process
Audit process
 
The process of issuing audit report by ca firm
The process of issuing audit report by ca firmThe process of issuing audit report by ca firm
The process of issuing audit report by ca firm
 
Topic 7 audit planning
Topic 7 audit planningTopic 7 audit planning
Topic 7 audit planning
 
financial statements and audit
financial statements and auditfinancial statements and audit
financial statements and audit
 

Sas 70 Readiness

  • 1. MP ConsultingMP Consulting SAS 70 ReadinessSAS 70 Readiness
  • 2. Contents  Background  Gaining Assurance  Benefits  SAS 70 Readiness
  • 3. Background  Auditors of US Securities and Exchange Commission (“SEC”) registrants are required to issue an opinion over their internal control environments  Specifically, they need to gain comfort over their client’s internal controls over financial reporting  If their client outsources certain key functions (i.e. Payroll) to a 3rd Party Service Organisation (“Provider”), auditors still need to obtain assurance that the control environment where the key functions are operating is effective
  • 4. Gaining Assurance  SEC registrants look to their Provider to present evidence that their internal control environment is operating effectively  The registrant can obtain this basically in one of two ways:  Option A: Auditing their Provider  Option B: Reliance on a SAS 70 Type II Report
  • 5. Option A: Audit the Provider  On an annual basis, each registrant will send a team into the Provider to conduct walkthroughs of controls and perform testing of the control environment by selecting samples and reviewing evidence  This is an additional burden to the registrant and the Provider:  Registrant needs to absorb cost and utilise resources to perform this work every year  Provider’s operation is disrupted through gathering evidence and employee efforts are diverted from their normal responsibilities  This burden is compounded for the Provider due to the fact that each registrant needs to send their own team in to perform the work  The registrant’s outside auditor may also need to perform their own testing at the Provider which adds to cost and employee efforts
  • 6. Option B: Reliance on a SAS 70 Type II Report  The Provider hires an outside audit firm to perform an annual SAS 70 audit  The audit firm reviews the Provider’s control objectives and tests control activities that support those objectives  A report is issued by the audit firm which can be used by the Provider’s clients and their auditors
  • 7. Disadvantages of Not Obtaining a SAS 70 Report  Multiple auditors visiting the Provider’s site and requiring evidence of a secured control environment  Extensive disruption of daily operations in order to comply with individual client requests (i.e. preparation of reports to satisfy clients and their auditors)  Potential loss of clients due to lack of evidence of an effective control environment  Limited potential to attract new clients who require a SAS 70 Audit to be performed
  • 8. Benefits of SAS 70 Type II Report  One set of auditors coming in to perform testing rather than multiple teams from different clients  Cost savings through minimal disruption of daily operations so employees can focus on the business  Retention of clients through giving them the assurance that they need: evidence of a valid internal control environment  Very effective as a marketing tool to attract new business and expand operations  Given the fact that a global convergence of standards / compliance requirements is occurring (i.e. IFRS), a SAS 70 Report will enhance the readiness of the Provider to meet these requirements and give them a distinct edge over competition
  • 9. Where do we start?  The most cost effective way to determine if your entity is ready for a SAS 70 Audit is through the performance of a SAS 70 Readiness Assessment  An external independent party will conduct interviews, review established Control Objectives and supporting Activities and examine sample evidence to support the Activities  A report will then be finalised and findings will be communicated to Management  Based on findings, action plans may need to be developed in order to enhance the control environment
  • 10. MP Consulting  Michael Potorti, a US Certified Public Accountant and former Big 4 Audit Manager, is the Managing Director of MP Consulting, a London and New York based company focused on helping companies with the development and enhancement of Internal Control Structures, Sarbanes Oxley (SOX) compliance and Internal Audit outsourcing. We have been extensively involved in US and European Sarbanes-Oxley Projects for multiple FTSE 100 and Fortune 500 entities. Our Industry experience includes Oil/Gas, Manufacturing, Banking, Insurance, Service and Technology (among others). We have consulted for both management of companies and assisted Big 4 firms with external audits. We have given seminars on effective internal controls and have helped companies with US SOX compliance since the law was passed in 2002.
  • 11. For further information please contact:For further information please contact: Michael Potorti CPAMichael Potorti CPA DirectorDirector MP ConsultingMP Consulting michaelp@mpconsultingltd.commichaelp@mpconsultingltd.com Tel. : +44 (0)7914 191455Tel. : +44 (0)7914 191455 www.mpconsultingltd.comwww.mpconsultingltd.com