Get this resource now

First Name
Thank you!
Error - something went wrong!

What SSAE No. 18 Means for the SOC 1 Reporting World

January 12, 2017

Simply put, SSAE No 18 is the standard which recodifies all the previous attestation standards. It is the culmination of the efforts to clarify the various standards for performing attestation engagements, which includes among many others, SOC 1 (commonly referred to as SSAE No. 16) and SOC 2 and SOC 3 (AT Section 101), into a single set of standards for the auditors.

The practitioners performing the attestation engagements for SOC reports will not notice very many material changes in the standards; however, there are a few key areas of emphasis worth noting for SOC 1 reports:

  • Modification to assertion criteria
  • Evaluating the reliability of evidence provided by the service organization
  • Monitoring of sub service organizations
  • Obtaining an understanding of the service organization’s system and assessing the risk of material misstatement
Previous Video
SOC 2 And You: Updates and Overview
SOC 2 And You: Updates and Overview

Next Article
HITRUST, Meet SOC 2 – Relationship Advice
HITRUST, Meet SOC 2 – Relationship Advice

HITRUST, or the Health Insurance Trust Alliance, is a security organization and the creator of the Common S...