Modern Assurance

We’re proud to work with organizations like Visionular Inc. who are committed to safeguarding their customer data. Learn about their process of achieving SOC 2 compliance below 👇

We’re proud to work with organizations like Blackthorn.io who are committed to safeguarding their customer data. Learn about their most recent milestone 👇

What is a System Description and why should you care? Get answers below 👇

Why auditors love screenshots 👇 One of the biggest challenges in an audit, especially a SOC 2 Type 2 audit, is ensuring the auditor is using complete and accurate data in their evaluation of controls. Auditors are required to do due diligence on every piece of data provided by the client to make sure that they feel completely comfortable with  1️⃣ The source of the data that we were provided 2️⃣ The reliability of the data to have been captured correctly and completely at the source 3️⃣ The process for querying/generating the data for audit 4️⃣ That the data didn’t get changed between being generated and being given to us 5️⃣ That the data is actually appropriate to test what we're trying to test When determining what to do for due diligence, the auditor does not assume that the client is trying to deceive them — but the auditor is required to assume that mistakes, errors, or misunderstandings may have happened during the process. This is why auditors generally love screenshots. Screenshots provide full context and reliability of the data they are looking at without reasonably being tampered with. However, uploading screenshots for every test and control can be time-intensive and tedious. Using a compliance automation platform that provides clear, detailed reporting, dashboards, and data rooms can help make auditing more transparent and straightforward, while cutting down on the time and resources required for evidence collection. Get in touch to learn more about how you can help ensure the completeness and accuracy of data needed for a successful audit: https://lnkd.in/eqiWMAMb

A recent study showed that 75% of organizations worldwide were currently implementing or considering bans on usage of generative AI chat tools. However, security and audit professionals like Roman H. Kepczyk, CPA and Director of Firm Technology Strategy for Right Networks, recommends that organizations proactively educate staff on the current benefits and pitfalls of these tools and update their security policies to promote safe usage. His tips include: 1️⃣ Providing examples of acceptable use 2️⃣ Limiting usage to one or two reputable tools which the employee has been properly trained upon 3️⃣ Prohibiting the use of any AI chatbot tool that has not been previously vetted by the IT department and approved by the employee’s supervisor Learn more here: https://lnkd.in/eyJPJDX9

At Modern Assurance, we follow four guiding principles to ensure we provide the highest level of SOC 2® service and audit quality to the tech startup community: 1️⃣ Ensure audit quality starts with the front line – the person performing the testing 2️⃣ Automate data and evidence collection 3️⃣ Scope accurately from the start of the engagement 4️⃣ Be curious about the client’s business so that we can give an informed perspective on their challenges To learn more about our mission and process, get in touch: https://lnkd.in/eqiWMAMb

If your organization processes the personal data of EU residents, or offers goods and/or services to EU residents, you must adhere to GDPR requirements. You can attest to your GDPR compliance by undergoing a compliance assessment. During a compliance assessment, an auditor evaluates how your organization processes the personal data of EU residents and what safeguards you have in place to ensure data security and privacy. The auditor can then provide an attestation that your organization complies with GDPR regulations.   Contact us to learn more about the types of GDPR attestations we offer: https://lnkd.in/eqiWMAMb