Posts Tagged ‘Risk Management’
How ISO 27001 and 27701 can help address client’s GDPR needs
At a glance: Schedule a consultation with Aprio’s Information Assurance Services and Risk Management team today. The full story: ISO 27001 and ISO 27701 are international standards that focus on information security management systems (ISMS) and privacy information management systems (PIMS), respectively. While ISO 27001 primarily addresses information security, ISO 27701 is an extension specifically…
Read MoreProtect Your Organization with an Effective Control Environment
At a glance: The full story: All organizations need to have some type of underlying internal control framework or system of internal control. Even very small non-profit organizations with just a few employees have processes that could contain reviews and/or approvals by management before transactions are entered into and posted to the accounting records. To…
Read MoreFASB Issues Accounting Standards for Crypto Assets
At a glance Schedule a consultation with Aprio today. The full story: On December 13, 2023, the Financial Accounting Standards Board (FASB) issued an accounting standards update (ASU 350-60) to improve the accounting for, and disclosure of, certain crypto assets. The ASU is in response to feedback from stakeholders, which indicated that improving crypto asset accounting should…
Read MoreCould Two Common Financial Controls Have Prevented the Fall of FTX?
At a glance Schedule a consultation with Aprio today. The full story: FTX was more than just an apparently sound company. It was the foundation of the cryptocurrency industry. In two weeks’ time, it went from a multi-billion crypto exchange to a pile of ash. As the supernova that was Sam Bankman-Fried and FTX implodes,…
Read MoreERP Solutions
Dentists: Are You Considering Your Patient’s Risk Tolerance?
At a glance: Partner with a dental CPA that will take as much care with your practice as you do with your patients. Contact us today to learn more. The full story: We’ve talked about risk as it relates to practice management, but it’s time to think about risk from a new perspective: the patient. Part of…
Read MoreRisk Analytics & Forensic Technology Services Overview
New Trust Services Criteria Are Set to Transform SOC 2 Reporting
The ability to demonstrate readiness for the next cyber event is a significant competitive advantage for any company that collects or processes highly sensitive data. A SOC 2 report backed by the new and improved Trust Services Criteria now provides service organizations with a much stronger basis to demonstrate the strength of their information security…
Read MoreISO 27701 Offers Data Processors a Roadmap to GDPR ‘Sufficient Guarantees’
If your company processes personal data of EU citizens, you need to be in compliance with the General Data Protection Regulation (GDPR). Will you be prepared to offer “sufficient guarantees” to your customers that collect that personal data? If not, you could face stiff penalties for noncompliance (up to 4 percent of annual global revenue…
Read More