

Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Sas 70 is a report produced after an audit of a service organization's controls by a certified public accountant (cpa). What sas 70 is, who can benefit from it, and the differences between type i and type ii reports. It also covers the advantages for both service organizations and user organizations, the unique aspects of sas 70 audits, and the industry standards used during the auditing process.
Typology: Study notes
1 / 3
This page cannot be seen from the preview
Don't miss anything!


SAS 70 (Statement on Auditing Standards No. 70) What is SAS 70?
Candidates for SAS 70 Audits
SAS 70 Certified Advantages: Benefits to Service Organizations
Benefits to User Organizations
Why SAS 70 audits are unique
Difference between Type I and Type II Engagements
Type I vs. Type II Reports Information Type I Type II
SAS 70 Service Auditor’s Report Required Required
Description of Controls Required Required
Information provided by the service auditor (a detailed listing of controls and testing of operating effectiveness)
Optional Required
Information provided by the service organization
Optional Optional
User organization control considerations (controls that user organizations have in place)
Optional Optional
Organizational areas to be audited
Audit Process Type I