In today's business landscape, companies face many demands for risk assurance, where proof of regulatory compliance or effective risk management is paramount. Gathering audit evidence is the cornerstone of this... Read More
Audit Management
What is an Internal Audit?
Internal audits are an exercise that an organization undertakes to understand how well the organization is managing the risks that confront it. The audit examines a certain risk facing the... Read More
The Fine Art of Scoping a SOC 2 Audit
Once upon a time, performing a SOC 2 audit was a rite of passage for service companies: "Wow, we're so successful now that big clients want us to do important... Read More
What is Evidence Collection in Compliance?
Evidence collection is the act of documenting an organization’s compliance processes and outcomes. Evidence collection is one of the best methods an organization can use to demonstrate that it is... Read More
How Frequently Should You Audit for SOC 2?
After your first System and Organization Controls for Service Organizations 2 (SOC 2) report, you’ll most likely want to follow up every year with a new audit and report. But... Read More