SecurityTubeBeta Watch ... Learn ... Contribute |
 |
 |
 |
 |
 |
  |
|
SAS 70 Compliance Auditing (Louisville Infosec)
This is the video of the talk "SAS 70 Compliance Auditing" given at Louisville Infosec by Rick Taylor.
Abstract: SAS 70 is an acronym for Statement on Auditing Standard 70; it was developed and is maintained by the AICPA (American Institute of Certified Public Accountants). Specifically, SAS 70 is a "Report on the Processing of Transactions by Service Organizations" where professional standards are set up for a service auditor that audits and assesses internal controls of a service organization. At the end of the audit, the service auditor issues an important report called the "Service Auditor's Report".
Speaker Bio: Rick Taylor, CISA, Director of Information technology and Internal Audit, Hawkins Company CPAs - Rick Taylor is the Director of the Information Technology and Internal Audit Services at Hawkins Company CPA’s and has been with the company since 2002. He has more than 24 years’ IT experience with regional accounting firms, national corporations (including AEGON USA and YUM! Brands, Inc.), and over 12 years’ experience at financial institutions, including PNC Bank, Great Financial Bank, and Star Bank. He has performed system security and compliance audits based on federal regulatory standards, and his vast knowledge and work with network architecture, disaster recovery, product development, and situational analysis have led to innovative and cost-saving solutions for many clients.
Abstract: SAS 70 is an acronym for Statement on Auditing Standard 70; it was developed and is maintained by the AICPA (American Institute of Certified Public Accountants). Specifically, SAS 70 is a "Report on the Processing of Transactions by Service Organizations" where professional standards are set up for a service auditor that audits and assesses internal controls of a service organization. At the end of the audit, the service auditor issues an important report called the "Service Auditor's Report".
Speaker Bio: Rick Taylor, CISA, Director of Information technology and Internal Audit, Hawkins Company CPAs - Rick Taylor is the Director of the Information Technology and Internal Audit Services at Hawkins Company CPA’s and has been with the company since 2002. He has more than 24 years’ IT experience with regional accounting firms, national corporations (including AEGON USA and YUM! Brands, Inc.), and over 12 years’ experience at financial institutions, including PNC Bank, Great Financial Bank, and Star Bank. He has performed system security and compliance audits based on federal regulatory standards, and his vast knowledge and work with network architecture, disaster recovery, product development, and situational analysis have led to innovative and cost-saving solutions for many clients.
Related Videos from: Louisville Infosec 2009 (2)
.jpg) | .jpg) | -(Louisville-Infosec).jpg) | .jpg) | .jpg) | |
You are Viewing this Video Now! | |||||
2586 views | 2718 views | 3571 views | 2539 views | 3261 views |
Author
Vivek Ramachandran is a security evangelist and has been working in computer security related fields for the past 7 years. In 2007, Vivek spoke at world renowned conferences Defcon (WEP Cloaking Exposed) and Toorcon (The Caffe Latte Attack). The discovery of the Caffe Latte Attack was covered by CBS5 news, BBC online, Network World etc news agencies.In 2006, Vivek was announced as one of winners of the Microsoft Security Shootout contest held in India among 65,000 participants. He has also been a recipient of a Team Achievement at Cisco Systems for his work on 802.1x and Port Security modules on the Catalyst 6500 switches. Currently he spends all of his time maintaining Security- Freak.Net , SecurityTube.Net and is the co-founder of Axonize. Vivek, is a Bachelor in Electronics and Communications Engineering from the prestigious Indian Institute of Technology, Guwahati.You can contact him at vivek[at]securitytube.net
©2007 Freak Labs |