SAS 70

Entries Tagged as 'SAS 70'

SAS 70 not a proof of security, privacy or ‘ccompliance’

by Jay Heiser | July 14, 2010 | 1 Comment

Gartner analysts have claimed that SAS 70 is being misused by many vendors and their customers.

Category: Cloud IT Governance risk management security Tags: AICPA, certification, Cloud, SAS 70, SAS70, security

The SAS 70 Charade

by Jay Heiser | July 5, 2010 | 4 Comments

SAS 70 is a) not a certification, b) not a standard, and c) isn’t meant to be applied the way it is being applied now. To be fair, all service providers are under huge customer pressure to provide SAS 70, but instead of explaining their security, continuity, and recovery capabilities in more appropriate terms, most [...]

4 Comments »

Category: Cloud IT Governance risk management security Vendor Contracts Tags: AICPA, certification, SAS 70, SAS70, standards

Jay Heiser

A member of the Gartner Blog Network

Entries Tagged as 'SAS 70'

SAS 70 not a proof of security, privacy or ‘ccompliance’

The SAS 70 Charade

Who's Blogging most recent blogs first

Categories

Tags

Archives