Blog
Covering the latest industry trends and an excellent source of thought leadership.
Join Online Tech, David Barton and Jon Long for a discussion to help clarify data center audit standards and assessments.
Register for our free webinar Tuesday, February 14, 2012 from 2-3pm ET to discuss the differences between AICPA’s (American Institute of Certified Public Accountants) SOC (Service Organization Controls) audits and reports, other types of audits, and the difference between point-in-time, period of time, self-assesments and independent assessments.
Find more information about SOC 2 Hosting, SSAE 16 Hosting and read about the differences between SAS 70, SSAE 16 and SOC.
David Barton, CRISC, Principal, UHY LLP
David is a Principal and is the practice leader of the Technology Assurance and Advisory Services group at UHY Advisors, Inc. in Atlanta, GA. He is Certified in Risk and Information Systems Controls (CRISC) and received his Certified Information Systems Auditor (CISA) designation in 1988.
With over 25 years practical experience in information systems and technology risk and controls, he is an expert in identifying and reducing information technology risk throughout an organization.
Read David Barton’s guest blog post on our blog, “SOCs and SASs: The New Standards for Service Organization Controls Reporting.”
Jon Long, CISA, QSA Senior Audit Manager CompliancePointJon is a Senior Manager and Practice Builder at CompliancePoint as well as an enthusiastic blogger at The Risk Assurance Guy. He is a Certified Information Systems Auditor (CISA) as well as a Qualified Security Assessor (QSA) in the Payment Card Industry (PCI).
Jon has over 15 years experience in IT, and crossed over into auditing in 2006. His background enables him to conduct audits from the perspective of having been audited by external auditors. He is currently championing an audit approach that allows organizations to combine multiple compliance requirements into a single SOC 2 engagement.