As service organizations transition to and begin using the 2017 Trust Services Criteria for SOC 2 reporting, some smaller companies are struggling with one of the new criteria related to the board of directors (CC1.2). Specifically, how can they address this criteria if they do not have a board of directors […]
One of the most challenging aspects of a System and Organization Controls (SOC) engagement is evaluating exceptions / control failures and determining how they will impact the SOC report and whether they will result in a qualified or adverse opinion. The purpose of this whitepaper is to help service organizations understand […]
One of the challenges that many service organizations face while completing a SOC 2 engagement is addressing the risk assessment and risk mitigation criteria found in TSP Section 100: 2017 Trust Services Criteria for Security, Availability, Processing Integrity, Confidentiality and Privacy (TSC). Kfi has published a whitepaper to: identify the risk […]
The effective date of the new revenue recognition standard has been delayed, but it is still approaching fast. The following white paper includes practical considerations related to implementation of the new standard: Revenue Recognition 7.9