The ABCs of Cloud Compliance

The Biggest difference between SAS70 and SOC2/3 One of the biggest differences between an old SAS70 report and a new SOC 2/3 report is that management of the service organization cannot decide which controls they will test. Service organizations can select which criteria to evaluate (security, availability, confidentiality, processing integrity or privacy), but they must…

The ABCs of Cloud Compliance

by Caroline Lowden, director of Internal Audit for Cbeyond Cloud computing is providing many businesses with a cost-effective, low-maintenance approach to store and maintain customer data. Eliminating on-site servers frees up resources and money allowing businesses to invest in additional products without hindering their workflow or sacrificing security. More cloud, more regulation This increased reliance…