|
|
SAS 70, Type II Checklist
BOL User Kaybee, contributed this SAS 70 Type II checklist. It was developed at Enterprise Financial Consulting where she now works. Their auditors use this in the field to document the adequacy of a SAS 70 Type II review, often in conjunction with a SOX audit. The checklist illustrates the elements of a SAS 70 that should be assessed and provides a format for documenting the review.
A SAS 70 audit is widely recognized because it represents that a service organization has been through an in-depth audit of their control activities. This generally includes controls over information technology and related processes. It also helps verify their financial strength and regulatory review. Statement on Auditing Standards (SAS) No. 70, is an internationally recognized auditing standard developed by the American Institute of Certified Public Accountants.
A Type I report describes the organization's description of controls at a specific point in time. A Type II report not only includes the organization's description of controls, but also includes detailed testing of their controls over a minimum six month period.
SAS 70 Type II Checklist (PDF format)
SAS 70 Type II Checklist (Excel .xls format -- you must RIGHT click on the link and "save target as" or "save link as", save the file, then open it from Word.
Access other Banker Tools on BankersOnline.com:
|
|
|
|
