×

Publications

Reporting on an Examination of Controls at a Service Organization Relevant to User Entities' Internal Control Over Financial Reporting (SOC 1(R)) - Guide

  • $69.00-$89.00
    Reporting on an Examination of Controls at a Service Organization Relevant to User Entities' Internal Control Over Financial Reporting (SOC 1(R)) - Guide Availability : In Stock Product #: AAGASO17P
    AICPA Member: $69.00
    Non-Member: $89.00
  • $59.00-$69.00
    Reporting on an Examination of Controls at a Service Organization Relevant to User Entities' Internal Control Over Financial Reporting (SOC 1(R)) - Guide Availability : eBook Download Product #: AAGASO17E
    AICPA Member: $59.00
    Non-Member: $69.00
  • $59.00-$69.00
    Reporting on an Examination of Controls at a Service Organization Relevant to User Entities' Internal Control Over Financial Reporting (SOC 1(R)) - Guide [Subscription] Availability : Online Access Product #: WSOC1
    AICPA Member: $59.00
    Non-Member: $69.00

This updated and improved guide is designed to help CPAs effectively perform SOC 1® engagements under AT-C section 320, Reporting on an Examination of Controls at a Service Organization Relevant to User Entities’ Internal Control Over Financial Reporting, of Statement on Standards for Attestation Engagements (SSAE) No. 18, Attestation Standards: Clarification and Recodification.

With the growth in business specialization, outsourcing tasks and functions to service organizations has become increasingly popular, increasing the demand for SOC 1 engagements.

This guide will help you do the following:

  • Gain a deeper understanding of the requirements and guidance in AT-C section 320 for performing SOC 1 engagements.
  • Obtain guidance from top CPAs on how to implement AT-C section 320 and address common and practice issues.
  • Provide best in class services related to planning, performing, and reporting on a SOC 1 engagement.
  • Successfully implement changes in AT-C section 320 arising from the issuance of SSAE 18, which is effective for reports dated on or after May 1, 2017.
  • Determine how to describe the matter giving rise to a modified opinion by providing over 20 illustrative paragraphs for different situations.
  • Understand the kinds of information auditors of the financial statements of user entities need from a service auditor's report.
  • Implement the requirement in SSAE No. 18 to obtain a written assertion from management of the service organization.
  • Organize and draft relevant sections of a type 2 report by providing complete illustrative type 2 reports that include the service auditor’s report, management’s assertion, the description of the service organization’s system, and the service auditor’s description of tests of controls and results.
  • Develop management representation letters for SOC 1 engagements.

What’s New

  • Updated for SSAE No. 18 and to reflect lessons learned in practice, this guide has been fully conformed to reflect changes resulting from SSAE No. 18, the clarified attestation standards.
  • Contains insight from expert authors on the Service Organizations Task Force composed of CPAs that all perform SOC 1® engagements and updates the guide with lessons learned in practice.
  • Includes illustrative report paragraphs describing the matter that gave rise to the report modification for a large variety of situations.

Additionally, this guide discusses and covers implementation challenges. In SSAE No. 18, the applicable requirements and application guidance for a service auditor’s engagement are contained in three different sections: AT-C section 105, Concepts Common to All Attestation Engagements, AT-C section 205, Examination Engagements, and AT-C section 320, Reporting on an Examination of Controls at a Service Organization Relevant to User Entities’ Internal Control Over Financial Reporting. The information in each section is not repeated in the other sections, so a service auditor would have to focus on all three sections. This guide integrates the requirements and application guidance in the three sections in the discussion of service auditors’ engagements.

There is no longer an early implementation issue because SSAE No. 18 is effective for service auditor’s reports dated on or after May 1, 2017, so practitioners are already performing engagements that cover years in which SSAE No. 18 would be effective (that is, years beginning on or about May 1, 2016).

Who Will Benefit?

  • Practitioners performing SOC 1® engagements
  • Management of entities that have SOC 1® engagements being performed and auditors relying on SOC 1® reports may also find this guide useful

Information about the eBook option

If purchasing this title as an eBook, please note that it is intended for a single user. An eBook is a downloadable file that will be accessible immediately after completing your purchase. Access to the download link expires 180 days from the purchase date. Download the file before this time elapses. Before downloading your eBook, you must:

  • Download and activate Adobe Digital Editions® - a free program for accessing eBooks
  • Return to the AICPA Store and go to My Account > My Downloads
  • Click the eBook title to download and open automatically in Adobe Digital Editions

Note: To access your eBook on a smartphone, tablet or other reading device, see our FAQ. This product is refundable within 10 days of your purchase date. For more information about this product or service concerns, please contact the AICPA Store Service Center at service@aicpa.org or call 888-777-7077.

Table of Contents

System Requirements

About the Publisher

American Institute of CPAs

The American Institute of CPAs (AICPA) is the world’s largest member association representing the CPA profession, with more than 418,000 members in 143 countries, and a history of serving the public interest since 1887. AICPA members represent many areas of practice, including business and industry, public practice, government, education and consulting.

The AICPA sets ethical standards for the profession and U.S. auditing standards for private companies, nonprofit organizations, federal, state and local governments. It develops and grades the Uniform CPA Examination, and offers specialized credentials for qualified professionals who concentrate on personal financial planning; forensic accounting; business valuation; and information management and technology assurance. With The Chartered Institute of Management Accountants (CIMA), it offers the Chartered Global Management Accountant (CGMA) designation, which sets the global benchmark for quality and recognition in management accounting.

The AICPA and CIMA also make up the Association of International Certified Professional Accountants (the Association), which represents public and management accounting globally, advocating on behalf the public interest and advancing the quality, competency and employability of CPAs, CGMAs and other accounting and finance professionals worldwide.

The AICPA maintains offices in New York, Washington, DC, Durham, NC, and Ewing, NJ.