SAS 70 Type II Audit

ASI has successfully completed the SAS 70 (Statement on Auditing Standards No. 70) Type II audit. SAS 70 is an internationally recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA). A SAS 70 audit is widely recognized as it represents that a service organization has been through an in-depth audit of their control activities. ASI’s controls were created using best practices in business process management, information technology and security.

The systems and processes evaluated in this audit include:

• Business process controls
• Application input, process and output controls
• Information technology organization and management controls
• Computer operations controls
• System Development & Maintenance / Program Change Management Controls
• Logical security controls
• Physical security controls
• Backup and data recovery controls

SAS 70 Type II audit compliance should be included in every organization’s checklist when evaluating outsourcing vendors, whether the organization is public or private.