IT Assurance Services

    IT Assurance Services 

    IT assurance services are independent professional services that improve information quality or its context. IT assurance services reduces information risk affecting more than just financial data. The major purpose of IT assurance services is to provide independent and professional opinions that improve the quality of information to management as well as other decision makers within an organization.

    Highlighted Resources

    SOC Tips White PaperThe AICPA recently issued an update to the Trust Services Principles and Criteria to supersede the 2009 version of Trust Services Principles, Criteria, and Illustrations for Security, Availability, Processing Integrity, Confidentiality, and Privacy (TSP section 100A). The revised criteria are effective for reporting periods ending on or after Dec. 15, 2014, with early adoption permitted. The privacy principle and criteria are currently under revision.

    Top 10 Tips for CPAs Performing a SOC Engagement
    This whitepaper is a listing of tips for CPAs that are performing or preparing to perform a Service Organization Control engagement. The paper also provides an overview of SOC engagements and criteria.

    A CPAs Guide to Developing the System Description for a SOC 1 Engagement  
    This brief provides management of a service organization, with an illustrative step-by-step process for developing a system description for a SOC 1 examination.


    A compass for guidance through IT AssuranceThe guidance set forth provides the CPA with direction and best practices towards improving information quality and managing information risk towards providing independent and professional opinions that improve the quality of information given to management as well as other decision makers within an organization.

    GTAG: Continuous Auditing: Implications for Assurance, Monitoring, and Risk Assessment
    This document provides guidance for CAEs on how implement an ideal strategy combing continuous auditing and continuous monitoring solutions to address these challenges.

    The GAIT Principles
    Each organization can use these principles in developing a more detailed process for defining the scope of their IT general controls.


    Pen and paper to write down standards of IT AssuranceThese resources help support the CPA's efforts towards providing quality assurance services. When used appropriately, the CPA can provide independent and professional opinions that improve the quality of information to management as well as other decision makers within an organization.

    Information Technology Considerations in Risk-Based Auditing: A Strategic Overview
    A timely discussion paper intended to provide readers with detailed, practical guidance on implementing the technology-related aspects of the Risk-Based Standards (SAS Nos. 104-111).

    Risk Assessment Standards in Action
    Three partners of three accounting firms have provided first hand accounts of how the Statement on Auditing Standards nos. 104–111 has affected their work. They offer their experience and challenges faced during implementation.

    Visit the Standards page for additional information.

    Service Organization Control Reporting

    Glasses and spreadsheet for SOC reportingToday, it is common for entities to outsource business tasks or functions to service organizations, even those that are core to an entity’s operations. Although user entities may rely on a service organization to perform outsourced tasks or functions, the user entity still retains responsibility (and the risks associated) for the service it provides to its customers.

    Quick Reference Guide to Service Organization Control Reports
    This reference guide addresses key topics that may arise when user entities or service organizations are determining which type of SOC report best meet their needs. It is useful to present this reference when they are determining which report they’d like to request for.

    Visit the Service Organization Control Reporting for additional information.

    International Accounting Standards Board

    Globe for international accounting standards boardsThe International Accounting Standards Board (IASB) is an independent, privately-funded accounting standard-setter based in London, UK. On April 1, 2001, the IASB assumed accounting standard-setting responsibilities from its predecessor body, the International Accounting Standards Committee.

    The IASB is committed to developing, in the public interest, a single set of high quality, understandable, and enforceable global accounting standards that require transparent and comparable information in general purpose financial statements. In addition, the IASB co-operates with national accounting standard-setters to achieve convergence in accounting standards around the world.

    Visit the International Accounting Standards Board (IASB) Website for additional information.


    Copyright © 2006-2015 American Institute of CPAs.